Re: [opensuse] ssh from behind a corporate firewall

From: Amedee Van Gasse <amedee@xxxxxxxxx>
Date: Tue, 03 Feb 2009 20:04:23 +0100

Boris Epstein schreef:

On Tue, Feb 3, 2009 at 1:17 PM, Amedee Van Gasse <amedee@xxxxxxxxx> wrote:

James Knott schreef:

Patrick Shanahan wrote:

AND, it's trivial to ssh into your home box and access an email client
there.

Assuming the corporate network & security will permit.

I assume that there is some kind of firewall? And that it blocks port
22? Are they using a mandatory proxy?
I may be able to help you, if you give me more details. Are they using
ISA or Squid?

Kind regards,
Amedee
--
To unsubscribe, e-mail: opensuse+unsubscribe@xxxxxxxxxxxx
For additional commands, e-mail: opensuse+help@xxxxxxxxxxxx

If TCP port 22 (or whichever port the SSH is running on) is blocked
you can definitely not SSH into the box directly. What can be helpful
is a VPN with the server (hub) outside of the firewalled network. That
not only provides extra security but also allows one to access hosts
whose existence is not even advertised in any perceptible manner out
on the Internet.

Boris.

Indeed. That's how do it too, with an ssh tunnel over port 443 to my
server in a datacenter, and from there openvpn to my workstation at home.
--
To unsubscribe, e-mail: opensuse+unsubscribe@xxxxxxxxxxxx
For additional commands, e-mail: opensuse+help@xxxxxxxxxxxx

References:
- Re: [opensuse] Reply to mailing lists
  - From: Randall R Schulz
- Re: [opensuse] Reply to mailing lists
  - From: Felix Miata
- Re: [opensuse] Reply to mailing lists
  - From: Jerry Houston
- Re: [opensuse] Reply to mailing lists
  - From: Kai Ponte
- Re: [opensuse] Reply to mailing lists
  - From: Philipp Thomas
- RE: [opensuse] Reply to mailing lists
  - From: Philip Dowie
- Re: [opensuse] Reply to mailing lists
  - From: Patrick Shanahan
- Re: [opensuse] Reply to mailing lists
  - From: James Knott
- [opensuse] ssh from behind a corporate firewall
  - From: Amedee Van Gasse
- Re: [opensuse] ssh from behind a corporate firewall
  - From: Boris Epstein

Prev by Date: Re: [opensuse] Need some help with a script
Next by Date: Re: [opensuse] ssh from behind a corporate firewall
Previous by thread: [opensuse] Re: ssh from behind a corporate firewall
Next by thread: Re: [opensuse] ssh from behind a corporate firewall
Index(es):
- Date
- Thread

Relevant Pages

Re: ssh security question
... Someone is attempting to use a dictionary or brute-force attack against your SSH server. ... Recently - I was away from the office - and enabled port 22 on the firewall - so I could access the centos server remotely. ...
(SSH)
Re: Activesync / Airsync - Alternative Ports
... Setup a reverse HTTP proxy. ... Another idea is to use the PPTP capabilities of a Windows Server to allow ... Satellite - Cisco Firewall - Exchange Server ... So on the server side you would configure the port 80 to redirect to ...
(microsoft.public.pocketpc.activesync)
Re: Activesync / Airsync - Alternative Ports
... "Chris De Herrera" wrote: ... Another idea is to use the PPTP capabilities of a Windows Server to allow ... Satellite - Cisco Firewall - Exchange Server ... So on the server side you would configure the port 80 to redirect to 8888 ...
(microsoft.public.pocketpc.activesync)
Re: Website using port 85
... >> on my server so that it shows the domain name instead of the IP address? ... > I've hosted http data over the traditional https port of 443. ... In general, it's usually pretty easy to get around a firewall, as ... You may also have the option of using SSH tunneling (if you ...
(Fedora)
Re: SSH: remote login returns "invalid user"
... host mail.harlley-consultants.com ... server rather than web server? ... If they have the right server software running (mail, web, ssh daemon) then that software picks up the request. ... When you want to send mail to xxx@xxxxxxxxxxxxxxxxxxxxxxx, your mail server looks up the MX record for hartley-consultants and sends it to port 25 on the machine pointed to. ...
(Debian-User)