From owner-freebsd-questions Thu Jul 11 12:20: 9 2002 Delivered-To: freebsd-questions@freebsd.org Received: from mx1.FreeBSD.org (mx1.FreeBSD.org [216.136.204.125]) by hub.freebsd.org (Postfix) with ESMTP id 5FBDC37B400 for ; Thu, 11 Jul 2002 12:19:59 -0700 (PDT) Received: from cypress.adhesivemedia.com (cypress.adhesivemedia.com [207.202.159.72]) by mx1.FreeBSD.org (Postfix) with ESMTP id C4F4743E3B for ; Thu, 11 Jul 2002 12:19:58 -0700 (PDT) (envelope-from philip@adhesivemedia.com) Received: from cypress.adhesivemedia.com (localhost [127.0.0.1]) by cypress.adhesivemedia.com (8.12.3/8.12.3) with ESMTP id g6BJJwdq044443 for ; Thu, 11 Jul 2002 12:19:58 -0700 (PDT) (envelope-from philip@adhesivemedia.com) Received: from localhost (philip@localhost) by cypress.adhesivemedia.com (8.12.3/8.12.3/Submit) with ESMTP id g6BJJwkg044440 for ; Thu, 11 Jul 2002 12:19:58 -0700 (PDT) X-Authentication-Warning: cypress.adhesivemedia.com: philip owned process doing -bs Date: Thu, 11 Jul 2002 12:19:58 -0700 (PDT) From: Philip Hallstrom To: questions@FreeBSD.ORG Subject: Re: Confusing problem with SSH port forwarding. In-Reply-To: <20020711113111.L37674-100000@cypress.adhesivemedia.com> Message-ID: <20020711121858.S37674-100000@cypress.adhesivemedia.com> MIME-Version: 1.0 Content-Type: TEXT/PLAIN; charset=US-ASCII Sender: owner-freebsd-questions@FreeBSD.ORG Precedence: bulk List-ID: List-Archive: (Web Archive) List-Help: (List Instructions) List-Subscribe: List-Unsubscribe: X-Loop: FreeBSD.ORG A followup... I can get it to work like it should (that is IE and everything else) when I tested on a friend's linux server running ssh version OpenSSH_3.1p1. So that would indicate that is is a bug in openssh, yes? Thanks! On Thu, 11 Jul 2002, Philip Hallstrom wrote: > Hi all - > I've been tearing my hair out for an hour now trying to figure > this out and I'm completely stumped. Didn't see anything in the archives > which hopefully means I'm just doing somethign stupid, but I don't see it. > > Here's the environment: > > win2k_client ---- > \ > server1 ----------- hub -- firewall -- internet -- server3 > / > server2 --------- > > server1 and server3 are running web servers. > firewall is also running natd. > > If on server2 I do > > ssh -l user -g -N -v -L 8888:server1:80 localhost > > then from win2k_client I can go to http://server2:8888 in IE and it works > like I'd expect it to. That is, I get the home page of server1. > > If on server2 I do > > ssh -l user -g -N -v -L 8888:server3:80 localhost > > then... > > - from win2k_client IE just sits and sits and sits -- and no entries are > generated in server3's log files. > > - from win2k_client I can do Start->Run->telnet server2 8888 followed by > "GET / HTTP/1.0" and I *do* get the home page of server3. > > - from server2 I can also telnet to port 8888 and get a connection, but > fetch fails with "fetch: -: Undefined error: 0" > > > What I don't understand is that obviously the tunnel is setup and running > since it is possible to use it, but why can't IE or fetch connect? > > I don't think it's a webserver issue because both servers are configured > to respond to any IP address they know about. And changing port 8888 to > port 80 doesn't make a difference in the results. > > SSH Version is: OpenSSH_2.9 FreeBSD localisations 20020307, SSH protocols > 1.5/2.0, OpenSSL 0x0090601f > > Do I need to upgrade all the ssh servers to the latest? Doesn't seem like > it since it *is* working. > > I'm having the same problem when trying to use SecureCRT or Putty to do > the forwarding directly from win2k_client. IE won't work, but telnet'ing > directly will. > > Anyway, I'm stumped.. anyone got any ideas? > > > > To Unsubscribe: send mail to majordomo@FreeBSD.org > with "unsubscribe freebsd-questions" in the body of the message > To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-questions" in the body of the message