port forwarding

[Pavel Kankovsky]

On Thu, 28 Aug 2003, Dusan Zatkovsky wrote:

> Stojim pred nasledujucim problemom.
> Demon X na vzdialenom serveri bezi neprivilegovany na porte localhostu.
> Ja ten lokalny port potrebujem pretunelovat na moj stroj cez ssh.
> Tu ale vsak narazam na problem.
[...]
> Dokaze ssh spravit port forward z localhostu:port1 na eth0:port2?

Nepletete si tak trochu smery? Fowarding z P1 na P2 obvykle znamena,
ze se klient pripoji na P1 a skrz SSH se to spojeni prodlouzi na P2.

Podle Vaseho popisu je evidentni, ze P1 je nejaky port na Vasem pocitaci,
zatimco P2 je port na jinem pocitaci na 127.0.0.1, na kterem bezi ten
demon.

Pokud je to tedy tak, jak se domnivam, tak opravdu nechapu, kde hledate
problem. kdyz provedu

  ssh -L lokalni_port:localhost:demonuv_port demonuv_pocitac

tak se pripojim na demonuv_pocitac a spojeni vedena na muj pocitac na
lokalni_port budou forwardovana na localhost:demonuv_port, ale "localhost"
bude pochopitelne interpretovano z pohledu demonova pocitace a nikoli
meho! Ostatne v ssh(1) je u -L zretelne napsano:

  This works by allocating a socket to listen to port on the local
  side, and whenever a connection is made to this port, the connection is
  forwarded over the secure channel, and a connection is made to *host*
  port *hostport* from the remote machine.
                  ^^^^^^^^^^^^^^^^^^^^^^^

--Pavel Kankovsky aka Peak  [ Boycott Microsoft--http://www.vcnet.com/bms ]
"Resistance is futile. Open your source code and prepare for assimilation."