[cfgeeks] Solaris 10 tunnel queston
Kevin P. Inscoe
kevin at inscoe.org
Thu Jan 4 14:26:19 EST 2007
On Thu Jan 04, 2007 at 01:09:02PM -0500, Kevin P. Inscoe wrote:
> I have some Solaris 10 machines behind a firewall and the FW guy is away,
> AWOL, on vacation err well I just can't find him! So anyway I need port 80 and ftp
> outbound externaly. I have other machines outside the FW that have complete
> access. Redhat or Solaris 10. Problem is I can only SSH out towards the FW
> hosts. I tried using vtun but it does not seem to work in 10 any longer (I
> had it working in So. 8). stunnel won't help me as I don't have SSL access.
> These are the only two tunneling proggies I have experince with.
> Suggestions?
Here's what worked
First I had to fix the /etc/sshd/sshd_config on Solaris 10 remotehost (behind FW)
because it would not allow me to forward TCP packets.
Got this error the first time:
Warning: remote port forwarding failed for listen port 8080
Change AllowTcpForwarding to yes and restart sshd.
After doing this remote port forwarding worked fine, You can
test this on the remote end by:
# netstat -na | grep 8080
127.0.0.1.8080 *.* 0 0 49152 0 LISTEN
Now the remote side is working now let's see if the tunnel works back to the
local host (outside host). In another session on localhost fire up netcat:
# nc -l -p 8080
and then back on the FW host
# telnet localhost 8080
You should see
Connected to localhost.
Escape character is '^]'.
The rest was setting up Squid. Since the outside host was a Redhat
that was easy as it was already installed. :-)
--
Kevin P. Inscoe Amateur Radio Call Sign: KE3VIN
Deltona, FL 32738 28.9497N by 81.1952W
kevin [at] inscoe [dot] org http://kevininscoe.com
GPG 0x61288D53
More information about the cfgeeks
mailing list