Re: Tunnneling?
From: Ype Kingma (ykingma_at_accessforall.nl)
Date: 11/01/03
- Next message: Nigel Kukard: "Bandwidth Mangement / Firewall / Graphing"
- Previous message: Rob Ristroph: "Re: Tunnneling?"
- Maybe in reply to: Rob Ristroph: "Re: Tunnneling?"
- Next in thread: Bear: "Re: Tunnneling?"
- Reply: Bear: "Re: Tunnneling?"
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]
Date: Fri, 31 Oct 2003 20:58:32 -0800
Bear wrote:
> On Fri, 31 Oct 2003 19:39:36 +0200, Rob Ristroph wrote:
>
>
>>>>>>> "bear" == bear <bear@bear.com> writes:
>> bear>
>> bear> I forgot to mention... I can't change the gateway... it's not my
>> bear> gateway. It's my schools... so routing is impossible! bear> bear>
>> The thing is that I have access to a server so that when someone bear>
>> connects to that server, the server passes the data through and bear> to
>> my computer.
>> bear>
>> bear> That would mean that i have to start the connection to that bear>
>> outside server and then the computers would settle for a port bear> that
>> the data would be sent through. So every connection to the bear> outside
>> server would tunnel back to my computer and send back bear> through the
>> tunnel and then to then computer accessing "the bear> outside server"
>> (or rather my website =). bear>
>> bear> I know this is possible... but how?
>>
>> Do you have access to a machine with an real IP on the internet, that
>> can be connected to from the outside world ? Does this machine also
>> have access to your machine inside the school's network ? Does your
>> access include the root account ?
>>
>> If so, you can have that machine forward port 80 to your server.
>>
>> If you merely have the ability to log in to (not as root) a machine with
>> an addressable IP, which also can connect to your internal machine, you
>> might be able to do something temporarily using ssh and port forwarding.
>> Look at the -L and -P options to ssh in the manpage.
>>
>> --Rob
>
> I don't have a machine with a real IP on the internet on my network. I
> don't have any account on any machine except mine on this network. It's a
> campus network, you know... with thousands of computers on it so the
> admins can't enable portforwarding for every student who wants it.
>
> If I had a external IP, i could setup portforwarding myself. So, that's
> not what i'm looking for.
>
> I only have a outside machine with a real IP... with root account.
> That could theoretically be set-up for a tunnel or something like that...
Setup the outside machine with sshd running, most Linux distros do
this by default. You can test this by trying:
ssh outside_user_id@localhost
on the outside machine. You should get a shell.
To setup a tunnel you will need to use ssh from behind the gateway
to the outside machine, and ask ssh to forward port 80 from the outside
machine back behind the gateway. This is called tunneling because ssh will
encrypt all forwarded data.
Before you forward the port this should give you a remote shell
from the machine behind the gateway:
ssh outside_user_id@outside.machine.wherever
If this doesn't work, but the first test passes, just holler,
you could still have other options.
However, if this works you can use a command like this:
ssh outside_user_id@outside.machine.wherever -P 80:localhost:80
The port will be forwarded though the tunnel setup by ssh as long
as you have a connection with the shell on the outside machine.
Good luck,
Ype
-- email at xs4all.nl
- Next message: Nigel Kukard: "Bandwidth Mangement / Firewall / Graphing"
- Previous message: Rob Ristroph: "Re: Tunnneling?"
- Maybe in reply to: Rob Ristroph: "Re: Tunnneling?"
- Next in thread: Bear: "Re: Tunnneling?"
- Reply: Bear: "Re: Tunnneling?"
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]
Relevant Pages
|
