![]() ![]() To your local server, it looks like the connection from the remote machine are initiated by the terminal. That is done using the following syntax: ssh -L terminal_port:remote_machine_ip:remote_service_port -p tunnel_endpoint_ssh_port may use remote port forwarding if you want to enable ANYONE(!) remote, who is able to reach the tunnel endpoint's listening port to be able to remotely access an ip/port in your local LAN. ![]() Therby, that remote machine's port is also accessible locally on your own terminal, i.e. You use local port forwarding if you want to tunnel to a certain remote machine/port, reachable by the tunnel endpoint you have ssh access to. This means your connection to the remote computer acts as a private tunnel inside the original connection. And because SSH is secure, you’re putting a secure connection inside an existing secure connection. Local Server-(LAN)-Terminal-(SSH,usually via Internet)-Tunnel Endpoint-(LAN)-Remote Machine Because the original connection came from the remote computer to you, using it to go in the other direction is using it in reverse. In these exmples the connections are structured like this: This is best understood with small examples. Its made for people who love and understand UNIX technology, but also love the simplicity and convenience of Mac OS X. By the way, where the ssh client is, is considered local. Secure Pipes makes managing SSH tunnels simple and robust. ![]() They don't notice that in one case it's an sshd.exe ssh server, and in the other case it's an ssh.exe, ssh client. The work computer is listening and on 1234. They just care about who is listening, and from their perspective, it looks the same. There are three types of SSH port forwarding: Local port forwarding connections from an SSH client are forwarded, via the SSH server, to a destination server. With the ssh commands he gave, from the perspective of the regular client and regular server, there appears to be no difference,as it doesn't say "ah this is an ssh client and this is an ssh server." it doesn't know ssh, and which is the client/server aspect of ssh is irrelevant and unknown to the regular client and regular server too. I wasn't commenting on the specific example commands he gave, where he switches -L and -R, and which sshd server he connects to. means the major practical difference between local and remote forwarding. Remote Forwarding In OpenSSH, remote SSH port forwardings are specified using the -R option. The above, which the questioner understood. The LocalForward option in the OpenSSH client configuration file can be used to configure forwarding without having to specify it on command line. The major practical difference, is that if connecting 2 computers A and B, and B is behind a firewall or NAT Router that you don't control, and it's blocking incoming. ![]()
0 Comments
Leave a Reply. |
Details
AuthorWrite something about yourself. No need to be fancy, just an overview. ArchivesCategories |