Hello. OpenSSH has -D option to create socks proxy (take local traffic and send it from remote machine). But sometimes there is an opposite problem: to allow apps on remote machine send traffic from local machine (for example, to get access to intranet resources). Expected syntax (I use -B as fist unused letter, plus it may be memorized as 'back'): ssh -B 127.0.0.1:1080 user at remote_server Creates a socks proxy for remote machine, all requests on remove machine coming to 127.0.0.1:1080 are served by local ssh client. Right now it can be implemented as combination of ssh -D 1080 localhost &; ssh -R 127.1:1080:127.1:1080 user at remote, but it is very inelegant. Thanks!
On Thu, Dec 10, 2015 at 6:04 AM, George Shuklin <george.shuklin at gmail.com> wrote:> Hello. > > OpenSSH has -D option to create socks proxy (take local traffic and send it > from remote machine). But sometimes there is an opposite problem: to allow > apps on remote machine send traffic from local machine (for example, to get > access to intranet resources).There is an existing enhancement request for this with attached patch (I have not looked at it in any detail or tried it though). https://bugzilla.mindrot.org/show_bug.cgi?id=2393 -- Darren Tucker (dtucker at zip.com.au) GPG key 8FF4FA69 / D9A3 86E9 7EEE AF4B B2D4 37C9 C982 80C7 8FF4 FA69 Good judgement comes with experience. Unfortunately, the experience usually comes from bad judgement.
Fwiw, I also have a patch for this, But unlike the client version it needs server support.> Am 09.12.2015 um 23:50 schrieb Darren Tucker <dtucker at zip.com.au>: > > On Thu, Dec 10, 2015 at 6:04 AM, George Shuklin > <george.shuklin at gmail.com> wrote: >> Hello. >> >> OpenSSH has -D option to create socks proxy (take local traffic and send it >> from remote machine). But sometimes there is an opposite problem: to allow >> apps on remote machine send traffic from local machine (for example, to get >> access to intranet resources). > > There is an existing enhancement request for this with attached patch > (I have not looked at it in any detail or tried it though). > > https://bugzilla.mindrot.org/show_bug.cgi?id=2393 > > -- > Darren Tucker (dtucker at zip.com.au) > GPG key 8FF4FA69 / D9A3 86E9 7EEE AF4B B2D4 37C9 C982 80C7 8FF4 FA69 > Good judgement comes with experience. Unfortunately, the experience > usually comes from bad judgement. > _______________________________________________ > openssh-unix-dev mailing list > openssh-unix-dev at mindrot.org > https://lists.mindrot.org/mailman/listinfo/openssh-unix-dev