09-25-2017
Hi,
Apologies if I'm mis-understanding you here, but I don't think SSH tunneling is quite what you're looking for here. In general, the purpose of SSH tunneling is to map some port on your own local workstation (the system on which the SSH client is running) to some other IP address and/or port on the remote side of the connection (the end on which the SSH server is running).
So, one example (and something I often used to do). Let's say you have an SSH account on unix.acme.com, which is externally accessible via SSH from the Internet. On that same network there is another host, let's say a Windows server called windows.acme.com. You want to RDP into windows.acme.com, but it doesn't have port 3389 (the RDP port) open to the outside world.
One thing you could do in that situation is use an SSH tunnel. So, from your own system (which is neither unix.acme.com nor windows.acme.com, but is something entirely different) you set up an SSH connection to unix.acme.com with a tunnel configured to re-direct, let's say port 3900 on your own local machine to port 3389 on windows.acme.com. You choose 3900 in case there is already something running port 3389 on your own local machine, which if it is typical Windows PC there very well may be (its own RDP listener). You can then RDP to localhost:3900, and your connection is transparently passed through to port 3389 on windows.acme.com, giving you a graphical login session there.
Now the situation you describe is somewhat different. You want to actually re-present to the outside world a service which is running on one port, on to another different port. That's not what SSH tunneling can really be used for. It can only really "connect" a TCP port on your local machine, on which your SSH client is running, to another TCP port either on the remote server or another server to which it has access on its own local network. You are the only one who will ever be able to use the tunnel, as it will exist solely on your own local PC. No-one would ever be able to then use the same port externally to get the service at the remote end in another way.
I hope this makes sense. If I've mis-understood something then I apologise, and if you can explain a bit more about why you feel SSH tunneling is the best solution here for you then I can have another crack at helping you out.
Edit: in terms of an actual solution, this is more a job for the firewall. Firewalls generally offer a way to translate incoming connections on one IP and/or port to another address and/or port. Either that, or just configure the service on dev.techx.com to listen on a different port, or multiple ports.
Last edited by drysdalk; 09-25-2017 at 05:56 PM..
10 More Discussions You Might Find Interesting
1. Solaris
Hi,
I have tried the following:
on PC1 (win xp) I have created ssh connection with port forwarding
(local 8888 to remote 8888) to server1.
>From server1 I have created another ssh connection with port
forwarding to server2(local 8888 to remote 1521).
When I try to connect to oracle... (3 Replies)
Discussion started by: goran00
3 Replies
2. UNIX for Advanced & Expert Users
Hi all
question -
there are 2 servers A + B. server A is connected to the internet and running a squid proxy server - server B is behind a firewall. I can ssh from A to B but not from B to A. I need internet access on B to update some files. I thought I could use some sort of ssh tunnel to... (1 Reply)
Discussion started by: silvaman
1 Replies
3. Filesystems, Disks and Memory
Hello Folks,
Im trying to pass the NFS Shared data through the SSH tunnel. Following are the Steps for my Executions:
A) Commands Executed on Server (NFS Server + SSHD Server running)
i) share -F nfs -o rw=<NFS Server IP> /home
ii) Start the NFS Server Services and SSHD Services.
... (3 Replies)
Discussion started by: ImpeccableCode
3 Replies
4. UNIX for Advanced & Expert Users
Hi - I frequently run commands, and transfer files to/from a host that uses SecurID ssh authentication. It is a real pain to have to enter the authentication information every time I want to interact with this host. I am wondering if there is a way to establish a one-time ssh connection to this... (2 Replies)
Discussion started by: cpp6f
2 Replies
5. Infrastructure Monitoring
Performing UDP tunneling through an SSH connection
Found this while looking for a way to temporarily forward SNMP requests across otherwise disconnected networks. Might be useful for someone else, too. (1 Reply)
Discussion started by: pludi
1 Replies
6. UNIX for Dummies Questions & Answers
So this seems like something that should be simple...but I can't quite seem to get it up and running. I have a machine, .107 with a GUI on port 8443. The problem is that I can't connect directly to .107 from my laptop. Now I have another machine, .69 that can connect to .107. So shouldn't I be able... (4 Replies)
Discussion started by: DeCoTwc
4 Replies
7. Shell Programming and Scripting
Is it secure to use free shells for ssh tunneling? Can the shell provider see and log the sites I visit and passwords I enter?
I'm new to this thing and couldn't find info on google :o (5 Replies)
Discussion started by: rafunk
5 Replies
8. UNIX for Advanced & Expert Users
Hi!
I came to know about SSH Tunneling to bypass the Firewall.
I will have to setup a free access SSH server to tunnel data access through PUTTY or OpenSSH.
The problem is that I don't know about any free access servers.
So, can anyone of you guide me for that, for any type of help? (1 Reply)
Discussion started by: nixhead
1 Replies
9. Shell Programming and Scripting
How to Get SQL query result to file in putty?
I have one SQL query and I want that query output to be redirected to the file.
uname -a
SunOS XXX 5.8 Generic_117350-58 sun4u sparc SUNW,Sun-Fire-480R
Please suggest. (7 Replies)
Discussion started by: pamu
7 Replies
10. UNIX for Dummies Questions & Answers
I want to perform ssh tunnelling for which I have been using PuTTy. Config is as follows:
Host IP: 172.XX.XX.111Port: 22Tunnel setting source port: 19005Destination: 172.XX.XX.40:1521After entering my user ID and password, I am able to see in my command prompt that 127.0.0.1:19005 is listening.... (1 Reply)
Discussion started by: aakashsoor
1 Replies
LEARN ABOUT CENTOS
libssh2_channel_forward_listen_ex
libssh2_channel_forward_listen_ex(3) libssh2 manual libssh2_channel_forward_listen_ex(3)
NAME
libssh2_channel_forward_listen_ex - listen to inbound connections
SYNOPSIS
#include <libssh2.h>
LIBSSH2_LISTENER * libssh2_channel_forward_listen_ex(LIBSSH2_SESSION *session, char *host, int port, int *bound_port, int queue_maxsize);
LIBSSH2_LISTENER * libssh2_channel_forward_listen(LIBSSH2_SESSION *session, int port);
DESCRIPTION
Instruct the remote SSH server to begin listening for inbound TCP/IP connections. New connections will be queued by the library until
accepted by libssh2_channel_forward_accept(3).
session - instance as returned by libssh2_session_init().
host - specific address to bind to on the remote host. Binding to 0.0.0.0 (default when NULL is passed) will bind to all available
addresses.
port - port to bind to on the remote host. When 0 is passed, the remote host will select the first available dynamic port.
bound_port - Populated with the actual port bound on the remote host. Useful when requesting dynamic port numbers.
queue_maxsize - Maximum number of pending connections to queue before rejecting further attempts.
libssh2_channel_forward_listen(3) is a macro.
RETURN VALUE
A newly allocated LIBSSH2_LISTENER instance or NULL on failure.
ERRORS
LIBSSH2_ERROR_ALLOC - An internal memory allocation call failed.
LIBSSH2_ERROR_SOCKET_SEND - Unable to send data on socket.
LIBSSH2_ERROR_PROTO - An invalid SSH protocol response was received on the socket.
LIBSSH2_ERROR_REQUEST_DENIED - The remote server refused the request.
LIBSSH2_ERROR_EAGAIN - Marked for non-blocking I/O but the call would block.
SEE ALSO
libssh2_channel_forward_accept(3)
libssh2 0.15 1 Jun 2007 libssh2_channel_forward_listen_ex(3)