From owner-freebsd-questions  Fri Jun 29  6:35:51 2001
Delivered-To: freebsd-questions@freebsd.org
Received: from smarthost2.mail.easynet.fr (smarthost2.mail.easynet.fr [212.180.1.69])
	by hub.freebsd.org (Postfix) with ESMTP id B1F2237B40F
	for <freebsd-questions@FreeBSD.ORG>; Fri, 29 Jun 2001 06:35:48 -0700 (PDT)
	(envelope-from fonvi@easynet.fr)
Received: from smtp1.mail.easynet.fr (slb-1-sippriv.mail.easynet.fr [10.0.1.57])
	by smarthost2.mail.easynet.fr (Postfix) with ESMTP
	id ACA8BB9DB; Fri, 29 Jun 2001 15:35:47 +0200 (CEST)
Received: from vobiscum.styx.org (adsl-3-48.adsl.easynet.fr [212.11.27.48])
	by smtp1.mail.easynet.fr (Postfix) with ESMTP
	id 8E99FB6BA; Fri, 29 Jun 2001 15:35:46 +0200 (CEST)
Received: (from marc@localhost)
	by vobiscum.styx.org (8.11.4/8.9.3/ - 6/08/98) id f5TDgUe01002;
	Fri, 29 Jun 2001 15:42:30 +0200 (CEST)
	(envelope-from marc)
Date: Fri, 29 Jun 2001 15:42:29 +0200
From: Marc Fonvieille <fonvi@easynet.fr>
To: Dan Langille <dan@langille.org>
Cc: freebsd-questions@FreeBSD.ORG
Subject: Re: remote cvs access
Message-ID: <20010629154229.A744@vobiscum.styx.org>
References: <200106281803.f5SI3q849045@lists.unixathome.org> <20010628205103.A8441@vobiscum.styx.org> <200106282318.f5SNIN852116@lists.unixathome.org>
Mime-Version: 1.0
Content-Type: text/plain; charset=us-ascii
Content-Disposition: inline
User-Agent: Mutt/1.2.5i
In-Reply-To: <200106282318.f5SNIN852116@lists.unixathome.org>; from dan@langille.org on Thu, Jun 28, 2001 at 07:18:21PM -0400
X-Useless-Header: Black Metal inc.
X-Operating-System: FreeBSD 4.3-STABLE
Sender: owner-freebsd-questions@FreeBSD.ORG
Precedence: bulk
List-ID: <freebsd-questions.FreeBSD.ORG>
List-Archive: <http://docs.freebsd.org/mail/> (Web Archive)
List-Help: <mailto:majordomo?subject=help> (List Instructions)
List-Subscribe: <mailto:majordomo?subject=subscribe%20freebsd-questions>
List-Unsubscribe: <mailto:majordomo?subject=unsubscribe%20freebsd-questions>
X-Loop: FreeBSD.ORG

On Thu, Jun 28, 2001 at 07:18:21PM -0400, Dan Langille wrote:
> Here's what finally worked for me:
> 
>    ssh -2 -N -f -L 2401:cvs.example.org:2401 localhost
> 
> where cvs.example.org is the hostname of the cvs server in question.
> 
[...]
> 
> The next thing that concerns me is the following output from tcpdump.  
> Hostnames have been changed:
> 
> 19:04:52.140672 host.example.org.1156 > cvs.example.org.cvspserver: . ack 
> 660 win 17520 (DF)
> 19:04:52.140907 cvs.example.org.cvspserver > host.example.org.1156: P 
> 660:697(37) ack 1346 win 17520 (DF)
> 
> Why am I seeing traffic on port 2401?
> 
> Given what I've read in man ssh, I'm hoping that this traffic across the wire 
> isn't actually on port 2401 and is encapsulated within the ssh connection:
> 
>      -L port:host:hostport
>              Specifies that the given port on the local (client) host is to be
>              forwarded to the given host and port on the remote side.  This
>              works by allocating a socket to listen to port on the local side,
>              and whenever a connection is made to this port, the connection is
>              forwarded over the secure channel, and a connection is made to
>              host port hostport from the remote machine.
>

Well, for me your ssh command is weird:

ssh -2 -N -f -L 2401:cvs.example.org:2401 localhost

this line create a secure channel from localhost to localhost and the
forwarding is made over this tunnel: it's what i understand...

Try ssh -2 -N -f -L 2401:cvs.example.org:2401 cvs.example.org
(i guess you own a ssh acces on that box).

Marc

To Unsubscribe: send mail to majordomo@FreeBSD.org
with "unsubscribe freebsd-questions" in the body of the message