[arch-general] SSH Tunnel doubts

Sven-Hendrik Haase sh at lutzhaase.com
Mon Jul 18 17:14:34 EDT 2011 

On 07/18/2011 10:03 PM, David J. Haines wrote:
> And yet, it doesn't touch on forwarding of anything other than X11 data.
>
> To answer the original question, you're missing the host you're trying to
> connect to, but I'll fill in the blanks
>
> ssh -L X:host1:Y host2 means open a connection to host2, including shell,
> and forward anything sent to localhost on port X to host1 on port Y. Host1
> and host2 can be the same machine. This comes in useful for things like
> forwarding VNC securely, e.g. ssh -L 60000:remotevncserver:5901
> remotevncserver and then connecting to the vncserver at localhost:60000
>
> ssh -R X:host1:Y host2 means open a connection to host2, including shell,
> and then host2 should listen on port X for connections, which it will then
> send back to your local host, which will forward the connection on to host1
> on port Y.
>
> In your example you're missing the host you're connecting to, but I can tell
> you that:
>
> ssh 192.168.1.200
> ssh -L 1000:192.168.1.100:2000 192.168.1.100
>
> when you start from 192.168.1.100 is functionally equivalent to
>
> ssh -R 1000:192.168.1.100:2000 192.168.1.200
>
> when you start from 192.168.1.100, in that both solutions will forward a
> connection from 192.168.1.200:1000 to 192.168.1.100:2000 (I didn't use the
> port 22 from your example, as that would imply that ssh wasn't running
> there, so you'd need to use -p and other messiness).
>
> Hope this helps,
>
> David J. Haines
> dhaines at gmail.com
>
>
> On Mon, Jul 18, 2011 at 3:12 PM, Jeffrey Lynn Parke Jr.<
> jeffrey.parke at gmail.com>  wrote:
>
>> On Mon, Jul 18, 2011 at 2:05 PM, Daniel.<danielhilst at gmail.com>  wrote:
>>
>>> I have some doubts about traffic forwarding
>>>
>>> Supposing that my IP is 192.168.1.100
>>> and the remote is 192.168.1.200
>>>
>>> is this ->  ssh -R 1000:192.168.1.200:22
>>> the same as this:
>>> ssh 192.168.1.200
>>> ssh -L 1000:192.168.1.100:22
>>>
>>>
>>> ???
>>>
>>> --
>>> *"Do or do not. There is no try"*
>>> *  **Yoda Master*
>>>
>>
>> You may want to read the wiki article for ssh.
>> https://wiki.archlinux.org/index.php/SSH
>>
>> It is very detailed.
>>
>>
>> --
>> "Breath Deeply and Dream"
>>
Please put that in the SSH article! Also, please bottom post from now on.

-- Sven-Hendrik

More information about the arch-general mailing list