search for: portforward

I have the following forced up mew by evil telco problem: - One IP - Homebrew LAN - portforwarding for some services. - extra PPTP/ppp layer to an internal 10.* network which mutilates DNS answers. Setup: Machine A has ip a.b.c.d (real IP) and is reachable over ADSL with it from the world. It does NAT for an internal LAN 192.168.0.0/24) and has portforwading turned on for some ports (eg 8...

Hi all, currently I am considering writing a patch for OpenSSH that will allow portforwarding using the control_master unix domain socket. The idea is to introduce an extra SSHMUX command, SSHMUX_COMMAND_SOCKS, which will then pass control to the normal socks functions used for dynamic forwarding. The main reason for me to write this patch are: - some more control over who gets to conn...

I think everyone will admit that X11 forwarding has been an incredible feature in [open]ssh. X11 is not the only local->remote protocol that might be useful across an SSH session however. But having to hack the code for new protocols as they come around seems silly. Wouldn't it be more useful to be able to describe a protocol that needs forwarding and some configuration that might

Hello, 1) Thanks - shorewall save me a lot of time! 2) I try - exactly: I must :-) - configure a VPN server behind 2 NATs. My situation: RoadWarior - INet - ISP Router (NAT+PortForwarding) - Inetranal Router (running Shorewal, NAT+PortForwarding) - Inetranl VPN Server If RoadWariror try to connect Internal VPN Server then connection failed with "GRE: Bad check chcksum from pppd" message. If I try connect to this VPN server from LAN then connection is estabilished well...

Hi, has anybody seen a patch that provides socks version 5 support for the dynamic portforwarding feature? I?ve seen thats implemented in ssh.com?s ssh version, but found nothing about openssh. Only thing i found was a patch to provide socks4a. cu sleepi

Hello all, I encountered a problem when trying to setup a remote portforward using OpenSSH 3.5p1. If the port that I was trying to listen to on the remote side was already in use, a message 'cannot bind to port: 5000' was written to the syslog, but the connection still persisted. I had no way on the client side to know that the listening wasn't taking place....

...Problem is that I can not connect from 192.168.1.0/24 network to services listening 84.248.213.195, but I can connect to Internet from NAT through that interface gateway (84.248.192.0). Connecting with public ip worked fine when I had simple NAT, with single Internet-connection. I also notice that portforwarding from Linux-box (public ip) to computer under nat doesnt work too. Anyone has idea what is the problem? # ip rule ls 0: from all lookup local 32762: from 84.248.213.195 lookup T1 32764: from 88.192.38.86 lookup T2 32766: from all lookup main 32767: from all lookup default # ip route 84...

...allow port forwardings it sends SSH_SMSG_FAILURE (protocol 1) while openssh client expects SSH_SMSG_SUCCESS. When the client gets the failure it exists with protocol error message. This patch will accept both failure and success messages. Second: I added a new configuration option to sshd_config: PortForwarding that can be used to disable port forwarding on the server (It does nothing to the client). This option can be used to mimic the commercial ssh compile time option --disable-server-port-forwarding (or something like that). I think a better solution would be to have tcp_wrappers like access contr...

I've got a setup where I run nfs over ssh on several distros, and it's been working like a charm on suse, mandrake, redhat 7-9 etc, but I've been unable to get it to work on CentOS. First I set up ssh portforwarding using: /usr/bin/ssh root@<remotehost> -L 250:irc.dynip.no:2049 -f sleep 60d & Then I mount using the following params in fstab: localhost:/somedir /somedir nfs rw,tcp,hard,intr,port=250,mountport=251 0 0 I can telnet to port 250/251 and it answers like expected. I can also...

Hi, I discovered a strange problem with the latest version (2.9.9p2) and previous versions of OpenSSH when using portforwarding und Solaris 8 x86. It seems like the getaddrinfo() function on Solaris 8 x86 is somehow broken, instead of binding a port to 127.0.0.1, OpenSSH tried to bind it to 1.0.0.127 (1.0.0.127 was the ai->ai_addr returned by getaddrinfo() in channel.c). I could not reproduce this on Solaris 8 Spa...

Anyone know how to set up port forwarding of multiple ports on a DLink DI-604? I successfully portforward the SIP port on the Advanced|Virtual Server page. It works because I can register a SIP client, but it's a single port - 5060. The DLink doesn't seem to provide an obvious way of portfarding the 10000 - 20000 ports needed for RTP. Any ideas? Hugh

...connect to KVM host by port 22 or 16509 impossible. In generally If i want login my KVM host i must login in to a "stepping stones" first, then login to that KVM host.( Now assume that the KVM host ip is 1.1.1.1 and the "stepping stones" ip is 2.2.2.2). So i use the "portforwarding" (i used the manner of "qemu+tcp" to connect KVM host, the default port is 16509), I visit the port 16509 in "stepping stones" machine 1.1.1.1 and then 1.1.1.1 port forwarding to 2.2.2.2:16509. And then my virt-manager connect KVM host successful? But my trouble i...

...se port 22 (ssh) on my home router, and I don't see any > >facilities in its GUI for doing that. > > inbound ports that aren't forwarded are closed by default on most > any/all NAT routers, unless the router itself is listening to said > port. Isn't there any sort of portforwarding thing? Such as forward port 2222 (I wouldn't use that one, it's too common, but as an example) to 192.168.1.5, and then have 192.168.1.5 listen on port 2222? Then have a firewall rule to allow access on that port and edit /etc/ssh/sshd_config to listen on 2222 instead of 22. Looking a...

...rver is behind firewall and i am trying to connect to FWD. i hv configured as mentioned in this link http://www.freeworlddialup.com/advanced/iax. i am able to register my server with FWD. But when i dial 393612, i always get 'No one is available to answer this time, try again later'. I hv portforwarded tcp 4569 and 5060 from my firewall to my asterisk server. Any idea what else is missing. Debug info -- Called fwd/393393612 Rx-Frame Retry[ No] -- OSeqno: 000 ISeqno: 001 Type: IAX Subclass: AUTHREQ Timestamp: 00015ms SCall: 02703 DCall: 00002 [65.39.205.121:4569] AUTHMETHODS :...

Has anyone heavily exercised the TCP connection forwarding features in openssh? I use this feature quite extensively for secure web surfing. I run a ssh command like this: ssh -c blowfish -L3128:127.0.0.1:3128 squidmachine Then I set up Netscape on my local machine to use 127.0.0.1:3128 as a proxy server. Needless to say, this exercises the TCP connection forwarding feature quite heavily. This

Hello I've been using icecast/ices 1.3.11 at home for sometime now, and it works pretty well. Thanks to everyone who has worked on it. Occasionally, icecast will go up to 100% CPU for some reason, but if I restart it this goes away. Ices also has served me well. It dies on occasion too, but I think it's likely due to my custom ices.pm module, since it was much more stable before I

...isk : rtp.conf : rtpstart=11000 rtpend=11500 firewall : -A RH-Firewall-1-INPUT -p udp --dport 4569 -j ACCEPT -A RH-Firewall-1-INPUT -p tcp --dport 5060 -j ACCEPT -A RH-Firewall-1-INPUT -p udp --dport 5060 -j ACCEPT -A RH-Firewall-1-INPUT -p udp --dport 11000:11500 -j ACCEPT Configuration Endian : portforwarding : 5060 and 11000:11500 to Asterisk_internal_ip outgoing traffic : coming from Asterisk_internal_ip : ports 5060 and 11000:11500 to RED ZONE (internet) are open ! Why is outgoing audio a problem ? Help is much appreciated !! Thanks for the feedback. -------------- next part -------------- An H...

...automation's sake I'd like to use the same policy for sshd. Because everything is automated through expect, there are no issues with responsiveness, or choppiness, so a large buffer could compensate for a bad network. At first I tried services like duat and tcpoverudp, which transparently portforward traffic from udp to tcp. But these don't work because it looks like the udp sessions don't hold the ssh connection well. Which lead me to what I hope is a workable design. I'd like to setup something that looks like the following: Process 1: udp:local <=> Process 2: udp:remo...

Heya, I'm trying to convince my company to use OpenSSH instead of the commercial SSH version. I need a little help: 1. What features does OpenSSH offer over commercial SSH (besides being free and open source of course)? 2. Our lawyers want details on the licensing / patents stuff. I have the high level details from the OpenSSH page. I need the nitty gritty like RSA patent# and

Hello All, I am looking for a sip phone that is capable of automatic nat. The Cisco ata186 for example works fine for natting with iconnecthere, but as for asterisk, both my 7960 and polycom ip600 require you to set the nat ip on the tftp. Does anyone know a good phone (or ata) that can do this automatically? For example, I want to give a phone to my brother, who is going to europe. His ICH