Advertisement

08.05.2003 at 07:59PM PDT, ID: 20700965
[x]
Attachment Details
[x]
The Solution Rating System

With so many solutions, how can you tell which solutions are most likely to help you and which ones are not? To provide you with a tool to use, we rate our solutions based on various elements that most accurately determine if a solution is a quality solution. To explain what factors affect the solution rating, here are the elements we take into consideration when formulating our solution rating.

  • The Grade of the Solution
  • The Zone Rank of the Expert Providing the Solution
  • The Number of Author and Expert Comments
  • The Number of Experts Contributing
  • The Feedback of the Community

Your Input Matters
Because of the way the system is set up, the most important variable in this equation is you. As a member of Experts Exchange, you are able to cast your vote on the quality of the solutions in regard to how complete, accurate, helpful and easy to understand each solution is. When you provide your feedback, each rating is adjusted accordingly. So, if you see a solution that has a poor rating that you think is a good solution, let us know by rating it. As you do, the rating will be adjusted and will become more accurate for other members of our site.

If you have any suggestions that you would like to make for our rating system, please ask a question in the Suggestions Zone of Community Support.

Thank you!
6.6

Cascade a X11 connection from a remote computer within an internal network to a SSH Xforwarding connection to an outside computer

Asked by rmgould in X-Windows Window Manager

Tags: , ,

Problem:  Cascade a X11 connection from a remote computer within an internal network to a SSH Xforwarding connection without using ssh for the last ‘hop’.


                                                                   Firewall
Home Computer           SSH                              |                                telnet
  Cygwin                ---------------------------------------à | Linux Box ---------------------------------à Sun Box
                                Only port 8080 open          |                             all ports open


I have a VPN that connects my home computer to a corporate network.  The VPN blocks most ports and I wish to use X11 X windows from within the network.  I am attempting to use SSH to tunnel the X11 connection from within the network to my Cygwin home computer.  The inner computer on the internal network does not allow SSH – thus I can not properly cascade SSH connections to allow X11 forwarding.  The internal network is secure so I am not concerned with security.  I have read every newsgroup article (and man page) I can get my hands on – but have not figured out the misconfiguration after a night of searching – probably a stupid oversight.

I am essentially looking to have any computer within the internal network be able to send an Xwindow to my home cygwin.

Thus – I need to use SSH to go from my home cygwin to the Linux box and telnet (or rlogin) to go from the Linux box to the sun box.  I have admin rights to the cygwin and the Linux box.  I do not have admin rights to the sun box.

Cygwin:   My ~/.ssh/config config file contains
      ForwardX11 yes

Linux: My sshd_config file contains
           X11Forwarding yes
          GatewayPorts yes
          X11DisplayOffset 10


Cygwin:  > ssh -X -l myuserid -p 8080 linux.myhost.com
      
Linux:      Warning: No xauth data; using fake authentication data for X11 forwarding.
      [should this output concern me?  I have xhost + enabled (I know it is bad practice but the VPN provides needed security]

Linux:      > xterm &
      [the xterm window appears as desired on cygwin]

Linux:   > echo $DISPLAY
      localhost:10.0
Linux:   > xhost +
      [temporary measure to reduce xauth issues]

Linux:   > telnet sun.myhost.com

Sun:      > export DISPLAY=linux.myhost.com:10.0
Sun:      > xterm &

Cannot connect to X server linux:10.
Check the DISPLAY environment variable or use `-d'.
Also use the `xhost' program to verify that it is set to permit
connections from your machine.

Sun:      > export DISPLAY=linux.myhost.com: 0.0
Sun:      > xterm &
[The xterm appears on my local sun box without problem]


A number of newsgroup post I saw referred to the need for a proper xauth config.  From my linux box I tried

Linux:      xauth list $DISPLAY
      [it was suggested that I copy the output to SUN’s .Xauthority file – however, the output to this command was blank]

      xauth list
            linux/unix:0  MIT-MAGIC-COOKIE-1  a03875840a61adf8970ba9cba7693271
                                localhost.localdomain/unix:0  MIT-MAGIC-COOKIE-1  a03875840a61adf8970ba9cba7693271
                                linux.myhost.com:0  MIT-MAGIC-COOKIE-1  a03875840a61adf8970ba9cba7693271
                                linux.myhost.com:0  MIT-MAGIC-COOKIE-1  a03875840a61adf8970ba9cba7693271
                                linux.myhost.com:0  MIT-MAGIC-COOKIE-1  a03875840a61adf8970ba9cba7693271
                                linux/unix:10  MIT-MAGIC-COOKIE-1  a03875840a61adf8970ba9cba7693271

      I copied the .Xauthority file from linux to sun.  I also tried the xauth add methods without avail.

This did not help.  Help is much appreciated.

Start Free Trial
[+][-]08.06.2003 at 01:46AM PDT, ID: 9087924

At Experts Exchange, members can ask their questions to thousands of technology professionals, also known as Experts. Experts compete and collaborate to answer those questions by leaving comments like this one.

Start your 7-day free trial to view this Expert Comment or ask the Experts your question.

 
[+][-]08.06.2003 at 01:46AM PDT, ID: 9087925

At Experts Exchange, members can ask their questions to thousands of technology professionals, also known as Experts. Experts compete and collaborate to answer those questions by leaving comments like this one.

Start your 7-day free trial to view this Expert Comment or ask the Experts your question.

 
[+][-]08.06.2003 at 01:46AM PDT, ID: 9087926

At Experts Exchange, members can ask their questions to thousands of technology professionals, also known as Experts. Experts compete and collaborate to answer those questions by leaving comments like this one.

Start your 7-day free trial to view this Expert Comment or ask the Experts your question.

 
[+][-]08.06.2003 at 01:49AM PDT, ID: 9087955

View this solution now by starting your 7-day free trial. Setting up your free trial is quick, easy, and secure. We will return you to this solution, unlocked, when you're done.

 

About this solution

Zone: X-Windows Window Manager
Tags: x11, connection, authentication
Sign Up Now!
Solution Provided By: FoxMURDER
Participating Experts: 2
Solution Grade: A
 
 
[+][-]08.06.2003 at 03:48AM PDT, ID: 9089148

Often, when Experts are collaborating with members who have asked questions, they will request additional information about the problem. Askers respond with an author comment like this one.

Start your 7-day free trial to view this Author Comment or ask the Experts your question.

 
[+][-]08.06.2003 at 04:57AM PDT, ID: 9089850

At Experts Exchange, members can ask their questions to thousands of technology professionals, also known as Experts. Experts compete and collaborate to answer those questions by leaving comments like this one.

Start your 7-day free trial to view this Expert Comment or ask the Experts your question.

 
[+][-]08.06.2003 at 08:44AM PDT, ID: 9092124

Often, when Experts are collaborating with members who have asked questions, they will request additional information about the problem. Askers respond with an author comment like this one.

Start your 7-day free trial to view this Author Comment or ask the Experts your question.

 
[+][-]08.06.2003 at 11:20AM PDT, ID: 9093437

At Experts Exchange, members can ask their questions to thousands of technology professionals, also known as Experts. Experts compete and collaborate to answer those questions by leaving comments like this one.

Start your 7-day free trial to view this Expert Comment or ask the Experts your question.

 
[+][-]08.06.2003 at 11:50AM PDT, ID: 9093706

Often, when Experts are collaborating with members who have asked questions, they will request additional information about the problem. Askers respond with an author comment like this one.

Start your 7-day free trial to view this Author Comment or ask the Experts your question.

 
[+][-]08.06.2003 at 03:04PM PDT, ID: 9095162

At Experts Exchange, members can ask their questions to thousands of technology professionals, also known as Experts. Experts compete and collaborate to answer those questions by leaving comments like this one.

Start your 7-day free trial to view this Expert Comment or ask the Experts your question.

 
[+][-]08.06.2003 at 03:06PM PDT, ID: 9095173

At Experts Exchange, members can ask their questions to thousands of technology professionals, also known as Experts. Experts compete and collaborate to answer those questions by leaving comments like this one.

Start your 7-day free trial to view this Expert Comment or ask the Experts your question.

 
[+][-]08.06.2003 at 03:09PM PDT, ID: 9095187

At Experts Exchange, members can ask their questions to thousands of technology professionals, also known as Experts. Experts compete and collaborate to answer those questions by leaving comments like this one.

Start your 7-day free trial to view this Expert Comment or ask the Experts your question.

 
[+][-]08.06.2003 at 07:44PM PDT, ID: 9096475

Often, when Experts are collaborating with members who have asked questions, they will request additional information about the problem. Askers respond with an author comment like this one.

Start your 7-day free trial to view this Author Comment or ask the Experts your question.

 
[+][-]08.07.2003 at 12:05AM PDT, ID: 9097466

At Experts Exchange, members can ask their questions to thousands of technology professionals, also known as Experts. Experts compete and collaborate to answer those questions by leaving comments like this one.

Start your 7-day free trial to view this Expert Comment or ask the Experts your question.

 
 
Loading Advertisement...
20080716-EE-VQP-32