Re: SSH connection through a router applying NAT
- From: Chris Davies <chris-usenet@xxxxxxxxxxxx>
- Date: Thu, 31 May 2012 09:04:43 +0100
Marco <netuse@xxxxxxxxxxx> wrote:
I want to be able to connect to my home computer via SSH from
the outside.
The problem is that I am behind a NAT. [...]
I have no access to the router [...]
Given these constraints you CANNOT directly get to your home computer
from outside. The only solution is for your own machine to establish a
connection to someone on the outside and use that connection to tunnel
back in again.
One option is to configure your "outside" machine to use one of the
DDNS services (such as dyndns.org) to track its IP address. Then you
can use OpenVPN from your home machine to your dyndns.org based system
to establish the connection. This presupposes that your outside machine
is not behind NAT but is directly on the Internet. If both systems are
behind NAT then you can consider the game over.
There are two important caveats with this:
1. You should use UDP connections with OpenVPN (rather than TCP)
2. You should set the "--float" option, and have the --keepalive
(ping and ping-restart) option quite high - I'd recommend
"--keepalive 120 300".
The reasons behind this are principally so that you don't spray other
users of your dynamic address space with your OpenVPN data packets. The
down-side is that it will take up to five minutes for your home server
to connect to your outside machine. (Remember: the average connection
time will be only 2.5 minutes, though.)
Chris
.
- References:
- SSH connection through a router applying NAT
- From: Marco
- SSH connection through a router applying NAT
- Prev by Date: Re: SSH connection through a router applying NAT
- Next by Date: Re (3): Pasting between different size auto-wrappers?
- Previous by thread: Re: SSH connection through a router applying NAT
- Index(es):
Relevant Pages
|
