[[software:ssh]]
Trace:
Show page
AdminRecent ChangesSitemap

Differences

This shows you the differences between two versions of the page.

Link to this comparison view

Both sides previous revision Previous revision
Next revision 		Previous revision
Last revision Both sides next revision
software:ssh [2011/06/07 22:57]
cyril [Dynamic Forwarding] 		software:ssh [2014/03/05 16:53]
cyril add sshuttle
Line 3: Line 3:
 ===== Static Forwarding ===== ===== Static Forwarding =====
  
 +Local forwarding:
 <code> <code>
 ssh -L8021:<dist>:21 <host> ssh -L8021:<dist>:21 <host>
 +</code>
 +Remote forwarding (you need to set "GatewayPorts yes" in sshd_config if you want to access the port from other addresses than localhost, then "/etc/init.d/sshd reload"):
 +<code>
 +ssh -R8021:<dist>:21 <host>
 </code> </code>
  
Line 12: Line 17:
  
 <code> <code>
-ssh -D8080 <host>+ssh [-fN] -D8080 <host>
 </code> </code>
  
Line 19: Line 24:
 Then configure your apps to use it: Then configure your apps to use it:
   * **Firefox** : Preferences | Advanced | Settings | Manual Proxy Configuration | SOCKS Host : localhost, Port : 8080   * **Firefox** : Preferences | Advanced | Settings | Manual Proxy Configuration | SOCKS Host : localhost, Port : 8080
 +  * **Firefox** : there are some add-ons like FoxyProxy to quickly switch between no proxy and different proxies
   * **Thunderbird** : Preferences | Advanced | Network & Disk space | Settings | Manual Proxy Configuration | SOCKS Host : localhost, Port : 8080   * **Thunderbird** : Preferences | Advanced | Network & Disk space | Settings | Manual Proxy Configuration | SOCKS Host : localhost, Port : 8080
   * **VLC** : ''vlc --socks="localhost:8080"''   * **VLC** : ''vlc --socks="localhost:8080"''
   * **Pidgin** : Tools | Preferences | Proxy | Proxy type: SOCKS 4, Host: localhost, Port: 8080   * **Pidgin** : Tools | Preferences | Proxy | Proxy type: SOCKS 4, Host: localhost, Port: 8080
-  * **ssh**, **git** : /etc/ssh_config <code>+  * **ssh**, **git**, **sshfs**, **scp**, **rsync** : /etc/ssh_config <code>
 # just to prevent from trying to use the proxy when you want to establish the proxy: # just to prevent from trying to use the proxy when you want to establish the proxy:
 Host <host> Host <host>
Line 30: Line 36:
     ProxyCommand socat STDIO SOCKS4:localhost:%h:%p,socksport=8080     ProxyCommand socat STDIO SOCKS4:localhost:%h:%p,socksport=8080
 </code> </code>
 +  * **KDE apps** (Konqueror, but does not work with Kopete...) ~/.kde4/share/config/kioslaverc<code>
 +[Proxy Settings]
 +ProxyType=1
 +socksProxy=socks://localhost:8080
 +</code>
 +  * **Applications that do not support use of a proxy**: configure tsocks in /etc/tsocks.conf:<code>
 +server = localhost
 +server_type = 5
 +server_port = 8080
 +</code> Then start your application with tsocks to force it to use the proxy:<code>
 +tsocks <app-with-args>
 +</code>
 +You can do something similar and maybe more powerful with proxychains.
 +
 +RSYNC protocol proxy:<code>
 +export RSYNC_CONNECT_PROG='ssh <host> nc %H 873'
 +</code>
 +
 +===== Complete Forwarding =====
 +
 +Forward all the traffic so you don't have to configure every application.
  
 +  * **VPN**: complicated to set up
 +  * **SShuttle**:<code>
 +sshuttle --dns -r <host> 0/0 -x 10.0.0.0/8
 +</code>0/0 is the forward mask (everything), -x is the exclude mask (local network), --dns forwards the DNS requests as well.
  
software/ssh.txt ยท Last modified: 2014/08/04 09:36 by cyril
Show pageOld revisions
Media ManagerBack to top
CC Attribution-Share Alike 4.0 International
Driven by DokuWiki Recent changes RSS feed Valid CSS Valid XHTML 1.0