Quoting "Jon." <spartic at sdf.lonestar.org>:
> Hey,
>> There is a machine behind a firewall, this user has asked me to connect to
> this machine however its stuck behind a firewall. This user can however
> ssh out to a machine i use on the internet. Is it possible to setup that
> he ssh at myhost and from that i can somehow tunnel back to his machine thats
> behind the firewall through the ssh session that he has started??
Sounds like your looking for remote port forwarding over SSH.
i.e.
he connects using
ssh username at myhost -R 3022:hishost:22
then you can connect to his machine over the tunnel using
ssh username at localhost -p 3022
I assume that should work fine provided you have your own login. But remember
it means that anyone connecting to port 3022 your server will be redirected
down the tunnel to the machine behind the firewall, including people connecting
from other servers, so you might want to put some rules to prevent connections
that do not come from the localhost. Not sure if you can limit which users have
access to the port or not, but that might be another thing you should consider.
When you doing something to bypass a firewall you want to make sure that your
not leaving anything open
--
Darragh
"Nothing's foolproof to a sufficently talented fool"
Maintained by the ILUG website team. The aim of Linux.ie is to
support and help commercial and private users of Linux in Ireland. You can
display ILUG news in your own webpages, read backend
information to find out how. Networking services kindly provided by HEAnet, server kindly donated by
Dell. Linux is a trademark of Linus Torvalds,
used with permission. No penguins were harmed in the production or maintenance
of this highly praised website. Looking for the
Indian Linux Users' Group? Try here. If you've read all this and aren't a lawyer: you should be!
