Secure Tunnelling with SSH

Thanks for the article. I kept hearing about how ssh could be used for encrypting the use of other ports, but never knew how to go about doing it.

I really liked how you also explained about installing the software and necessary libraries along with how to use it.

I've been doing this for a while but haven't been able to figure out how to do one thing. If I make a -R or -L tunnel either one, the endpoint is the only machine that can connect to it. It's as if incoming connections are only valid from localhost and not other local machines on the LAN.

I've got a few customers with firewalls and NO open hole for me to be able to SSH in to their server. I dial in via analog modem, create a reverse SSH tunnel to one of my servers and can then get through to their server easily. Most of their firewalls timeout sessions after so much inavtivity. So I use 'screen' and start 'top' or a 'ping' or something to keep the session active :)

I'd just like to be able to setup SecureCRT on my Wintel box to ssh to port 2000 on a Linux server with an active SSH tunnel and end up with a login on a remote server.

Thanks!

You can use the putty suite to do the same using Windows on the client. Tunneling can be setup from the user interface or by adding commands to putty from the command line.

In fact: you can even use SSH to automatically backup entire LAMP applications to Windows machines using the secure copy method of SSH and remote commands.

I once wrote an article how to do that.

hi,
I'm doing this

ssh -L 9000:localhost:23 otherserver -N &

then on the same machine I'm doing

telnet localhost 9000

and I'm getting

Connected to localhost.
Escape character is '^]'.
channel 1: open failed: administratively prohibited: open failed
Connection closed by foreign host.

what's wrong ?

Sometimes port forwarding doesn't work if the remote server rejects the forwarded packets. I set this up using Putty. After loggin in, and attempting to use the forwarded port, I got: "Forwarded connection refused by server", in Putty's event log.

I switched from "real" SSH server to OpenSSH when the licensing rules changed. OpenSSH don't offer a quickstart document, but the article goes a long way to fulfilling this, and enabled me to set up a working system again. Thanks for that !

Secure Tunnelling with SSH

April 02, 2003
You probably already know how to use SSH to securely log in to remote hosts over the Web. In this article, take things a little further by using SSH to encrypt connections to other ports as well. Scenarios covered include securing your mail server connection so that your mail password is always protected and creating secure pathways through firewalls for trusted hosts. Read the article .

Please discuss this article in this thread. You can read the article here .

If you would like to see an article covering a particular topic, please post your request here.