Re: How to bridge two ssh sessions?

[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

 


David Sims ...:

Hi,

  I don't know how to do what you want with bare SSH, but IMHO a better
solution would be to use an IPCop firewall and then to use the OpenVPN
addon (Zerina) along with the appropriate OpenVPN client (see:
http://openvpn.se/).... This would allow for a secure and easy to manage
ssh-based solution.... that is actually very transparent to the end
user...


Thanks for your tip but in this case I do not have any influence on what
runs on the clients except for ssh, one client gonna be a router box
with OpenWRT running an un-manned application that should be connected
from outside world without having to open any firewall ports, the other
end beeing some Windows (or whatever) application that needs to contact
the router box. The only world-known is the service in middle!


Dave Sims
Houston, Texas
***********************************************************************
On Mon, 2 Feb 2009, [ISO-8859-15] Peter K?nnemann wrote:


Hi,
Is there somebody here who could point me in the right direction?

I am about to implement a sort of 'ssh bridge' that can be reached
from devices behind a NAS gateway. The Idea is to bridge two
clients in a way that they can talk to each other using ssh tunnels.

Each client should use ssh to connect to a 'bridge server', the
server should then somehow 'connect' these client session and allow
tunneling sessions 'end to end'. The bridging should also be able
to request credentials and/or use some other means of authentication
maybe using rsa keys.

(Client begind NAS) ------( server )-------(Client behind NAS)
              SSH  ------->         <------ SSH
                           \_Bridge/
              \______________tunnel_____________/

I am currently using ssh and rsa key to establish a session for each
client. The session ends in a shell script (no command shell) that
only allow some specific functions.

The whole thing reminds me on the way TeamViewer seems to have implemented
it but I could not find any clue in the net about how. Any hint would
be very much apreciated.

Thanks, Peter

Attachment: smime.p7s
Description: S/MIME Cryptographic Signature

[Index of Archives]     [Open SSH Unix Development]     [Fedora Users]     [Fedora Desktop]     [Yosemite Backpacking]     [KDE Users]     [Gnome Users]

  Powered by Linux