Re: can a SSH server initiate a connection?
From: Alan Chandler (alan_at_chandlerfamily.org.uk)
Date: 08/03/04
- Previous message: J F: "Solved: relocation error: /usr/sbin/prelink.bin: undefined symbol: gelf_getehdr"
- In reply to: rich: "Re: can a SSH server initiate a connection?"
- Next in thread: Osamu Aoki: "Re: can a SSH server initiate a connection?"
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]
To: debian-user@lists.debian.org Date: Mon, 2 Aug 2004 23:45:52 +0100
On Monday 02 August 2004 13:05, rich wrote:
> > Do you control firewall?
> > If yes : use DNAT to redirect external connection to SSH server
> > (if firewall is NAT box)
> > or open port 22 and forward connectio to internal hosts
>
> There's a firewall I control (which allows port 22 so long as the SYN
> packet comes from inside), but that's behind a NAT router, so the only way
> to "find" my server on the internet is if IT initiates the connection.
Thats not true. I have an sshd server sitting on a box behind a NAT firewall
(netgear router). I have opened port 22 and told the NAT router to route
incoming connections on that port to my sshd server. From outside I then ssh
to the IP address of the NAT router - it automatically forwards it to the
internal IP addess of the sshd server.
Once I am there, with controls I can then forward ssh onto other machines on
my internal network
-- Alan Chandler alan@chandlerfamily.org.uk First they ignore you, then they laugh at you, then they fight you, then you win. --Gandhi -- To UNSUBSCRIBE, email to debian-user-REQUEST@lists.debian.org with a subject of "unsubscribe". Trouble? Contact listmaster@lists.debian.org
- Previous message: J F: "Solved: relocation error: /usr/sbin/prelink.bin: undefined symbol: gelf_getehdr"
- In reply to: rich: "Re: can a SSH server initiate a connection?"
- Next in thread: Osamu Aoki: "Re: can a SSH server initiate a connection?"
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]
Relevant Pages
|
