Solved

SSh-Tunnel via putty

Posted on 2011-09-19
8
1,398 Views
Last Modified: 2012-05-12
Hi,

I succeeded to make a ssh-tunnel to my home network via putty (logged in, can ping ip's).

Now I would like to redirect my browser to be able to connect to my home configs, pc's. That what doesn't work. I've set firefox to use 127.0.0.1 on port 1080. Putty shows D1080 underneith the tunnel option.
Now when I try to connect to any address, it doesn't do anything. Don't know how to troulbeshoot since everything looks ok ....

Please advise.

J.
0
Comment
Question by:janhoedt
8 Comments
 
LVL 23

Expert Comment

by:Brian Gee
ID: 36560737
You have Firefox configured to use SOCKS for proxy connections, right?
0
 

Author Comment

by:janhoedt
ID: 36560942
Correct
0
 

Author Comment

by:janhoedt
ID: 36560943
Correct
0
 
LVL 14

Expert Comment

by:Giovanni Heward
ID: 36561107
What OS and SSH server product are you using?
0
How to improve team productivity

Quip adds documents, spreadsheets, and tasklists to your Slack experience
- Elevate ideas to Quip docs
- Share Quip docs in Slack
- Get notified of changes to your docs
- Available on iOS/Android/Desktop/Web
- Online/Offline

 

Author Comment

by:janhoedt
ID: 36561175
Xp and synology nas
0
 
LVL 7

Accepted Solution

by:
mchkorg earned 500 total points
ID: 36565739
a "dynamic" tunnel (SOCKS) works fine for ICQ/MSN/jabber and so on. I never managed to make it work for http/https trzafic.

To redirect your http/https trafic this way, I'd suggest you install a proxy software (like squid) on your server (I bet/hope your NAS can do it or maybe you can add packages) and then, you create a "local tunnel" in putty (not a dynamic one), say : 12345 to 127.0.0.1:3128
Then you tell firefox to use localhost:12345 as a proxy

127.0.0.1:3128 if your proxy is on the same host than SSH, otherwise you enter it's IP
3128 is the default port for squid

Regards
0
 
LVL 14

Expert Comment

by:Giovanni Heward
ID: 36569569
I've actually configured two WinSSHD (Bitvise) servers in the last two weeks; both work great for all traffic (http/https included.)  If you need to redirect traffic from command-line (or any other applications which do not support proxies directly), I recommend Proxifier.  This point here is you do NOT generally need to configure a separate http/https proxy.

Going back to your problem... have you verified the user account itself has been configured on the server side to permit C2S/S2C port forwarding.  With WinSSHD, the port forwarding configuration is on the user/group configuration level rather than server.

0
 

Author Comment

by:janhoedt
ID: 36581590
Have been able to make it work. However only over an openvpn-tunnel.
http://www.nikhef.nl/~janjust/nikhef-proxy/, the thing is, only proxy socks 5 should be used.

Now this works over the proxy-tunnel, not when I go via putty only (directly to my dyndns-address), I get stuck at the proxy (port 80). It won't authenticate, however I've set the proxy-settings in putty.
Note: when I connect over port 8080 (they all redirect to port 22 = ssh on my NAS) it works fine, but I need port 8080 for my openvpn.

So in short: I can connect via putty to port 8080 (reroutes to 22 on my NAS), not via port 80 or 443 (also reroutes to 22 on my NAS), connection is stuck on proxy local network (work).
0

Featured Post

How your wiki can always stay up-to-date

Quip doubles as a “living” wiki and a project management tool that evolves with your organization. As you finish projects in Quip, the work remains, easily accessible to all team members, new and old.
- Increase transparency
- Onboard new hires faster
- Access from mobile/offline

Join & Write a Comment

Article by: rfc1180
The Maximum Segment size (MSS) is an important consideration when troubleshooting connectivity via the Internet/Intranet. As the packets are routed via the Internet/Intranet, the packets must traverse through multiple routers in the path between two…
Secure Shell (SSH) is a network protocol for secure data communication, mainly used to administer remote Unix / Linux servers via command line. But it also allows the user to open a secure tunnel between a client and a server where he can send any k…
Here's a very brief overview of the methods PRTG Network Monitor (https://www.paessler.com/prtg) offers for monitoring bandwidth, to help you decide which methods you´d like to investigate in more detail.  The methods are covered in more detail in o…
In this tutorial you'll learn about bandwidth monitoring with flows and packet sniffing with our network monitoring solution PRTG Network Monitor (https://www.paessler.com/prtg). If you're interested in additional methods for monitoring bandwidt…

747 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question

Need Help in Real-Time?

Connect with top rated Experts

11 Experts available now in Live!

Get 1:1 Help Now