hello
i have a linux machine with a private ip connected to the internet
i have a public ip and need to ssh to the linux box
any tools for that ?
___
Linux-il mailing list
Linux-il@cs.huji.ac.il
http://mailman.cs.huji.ac.il/mailman/listinfo/linux-il
ssh itself ?
http://www.thegeekstuff.com/2013/11/reverse-ssh-tunnel/
Kaplan
On Sun, Jul 20, 2014 at 11:36 AM, Erez D wrote:
> hello
>
> i have a linux machine with a private ip connected to the internet
> i have a public ip and need to ssh to the linux box
>
> any tools for that ?
>
> ___
On Sun, Jul 20, 2014 at 10:39 AM, Lior Kaplan wrote:
> ssh itself ?
>
> http://www.thegeekstuff.com/2013/11/reverse-ssh-tunnel/
nice, however this requires me to give access to my server, which i do
not want ...
(or, can i give people permission to ssh to my server only for reverse
tunnels and no
Didn't check it, but login in with a user who has /bin/true might do the
trick.
Kaplan
On Sun, Jul 20, 2014 at 12:03 PM, Erez D wrote:
> On Sun, Jul 20, 2014 at 10:39 AM, Lior Kaplan
> wrote:
> > ssh itself ?
> >
> > http://www.thegeekstuff.com/2013/11/reverse-ssh-tunnel/
> nice, however this
On 2014-07-20 12:03, Erez D wrote:
On Sun, Jul 20, 2014 at 10:39 AM, Lior Kaplan wrote:
ssh itself ?
http://www.thegeekstuff.com/2013/11/reverse-ssh-tunnel/
nice, however this requires me to give access to my server, which i do
not wan
On Sun, Jul 20, 2014 at 11:06 AM, Lior Kaplan wrote:
> Didn't check it, but login in with a user who has /bin/true might do the
> trick.
you are correct, it works.
however it is still a security risk, as this means the client may
listen on unused port ...
>
> Kaplan
>
>
> On Sun, Jul 20, 2014 at
you can add a port-knocking tool like fwknop to add a dynamic rule to
forward your connection into the privet machine.
*--Rabin*
On Sun, Jul 20, 2014 at 12:16 PM, Erez D wrote:
> On Sun, Jul 20, 2014 at 11:06 AM, Lior Kaplan
> wrote:
> > Didn't check it, but login in with a user who has /bin
On 7/20/2014 12:03 PM, Erez D wrote:
On Sun, Jul 20, 2014 at 10:39 AM, Lior Kaplan wrote:
ssh itself ?
http://www.thegeekstuff.com/2013/11/reverse-ssh-tunnel/
nice, however this requires me to give access to my server, which i do
not want ...
(or, can i give people permission to ssh to my ser
On 20/07/2014 12:45, geoffrey mendelson wrote:
On 7/20/2014 12:03 PM, Erez D wrote:
On Sun, Jul 20, 2014 at 10:39 AM, Lior Kaplan
wrote:
ssh itself ?
http://www.thegeekstuff.com/2013/11/reverse-ssh-tunnel/
nice, however this requires me to give access to my server, which i do
not want ...
(
looks a little complicated - extra ssh server, firewall with port knocking
all this for a ssh connection ...
On Sun, Jul 20, 2014 at 11:38 AM, Rabin Yasharzadehe wrote:
> you can add a port-knocking tool like fwknop to add a dynamic rule to
> forward your connection into the privet machine.
>
> -
If you just want an ssh connection you can simply redirect connection
attempts to some port on the
Internet-accessible machine to port 22 on the private-ip one - using
whatever tool that fits you best -
iptables, xinetd, redir, probably many others.
--
Didi
2014-07-20 13:31 GMT+03:00 Erez D :
>
On Sun, Jul 20, 2014 at 1:30 PM, Yedidyah Bar David
wrote:
> If you just want an ssh connection you can simply redirect connection
> attempts to some port on the
> Internet-accessible machine to port 22 on the private-ip one - using
> whatever tool that fits you best -
> iptables, xinetd, redir, p
Re:all
You can have something running on the machine you want to SSH to that
updates the machine with a fixed IP what its' IP is and have a firewall
rule or some other way to redirect specific traffic like for instance
traffic to TCP:2 from that machine to the IP that it was updated to
be
On Sun, Jul 20, 2014 at 3:36 PM, E.S. Rosenberg wrote:
> You can have something running on the machine you want to SSH to that
> updates the machine with a fixed IP what its' IP is and have a firewall rule
> or some other way to redirect specific traffic like for instance traffic to
> TCP:2 fr
I think we need to reset here for a minute...
Is your goal to connect to a machine with a IP on a private range where
there exists a gateway machine or router with a (known) public IP?
In that case the solution is very simple: port-forwarding
However I would not do that without also running fail2b
15 matches
Mail list logo
