From owner-freebsd-questions Mon Nov 11 3:25:17 2002 Delivered-To: freebsd-questions@freebsd.org Received: from mx1.FreeBSD.org (mx1.freebsd.org [216.136.204.125]) by hub.freebsd.org (Postfix) with ESMTP id 999AE37B401 for ; Mon, 11 Nov 2002 03:25:15 -0800 (PST) Received: from babyruth.hotpop.com (babyruth.hotpop.com [204.57.55.14]) by mx1.FreeBSD.org (Postfix) with ESMTP id 035A743E3B for ; Mon, 11 Nov 2002 03:25:15 -0800 (PST) (envelope-from nyingelay@hotpop.com) Received: from hotpop.com (kubrick.hotpop.com [204.57.55.16]) by babyruth.hotpop.com (Postfix) with SMTP id B202C2121A7 for ; Mon, 11 Nov 2002 11:25:04 +0000 (UTC) Received: from dreambsd (unknown [63.207.100.255]) by smtp-1.hotpop.com (Postfix) with ESMTP id D88512F80EC; Mon, 11 Nov 2002 11:24:52 +0000 (UTC) Content-Type: text/plain; charset="iso-8859-1" From: Naydoe Maung To: Jacob Rhoden , freebsd-questions@freebsd.org Subject: Re: [OT] Reverse ssh through firewall? Date: Mon, 11 Nov 2002 03:27:17 -0800 User-Agent: KMail/1.4.3 References: <200211111605.35731.jrhoden@unimelb.edu.au> In-Reply-To: <200211111605.35731.jrhoden@unimelb.edu.au> MIME-Version: 1.0 Content-Transfer-Encoding: quoted-printable Message-Id: <200211110327.17924.nyingelay@hotpop.com> X-HotPOP: ----------------------------------------------- Sent By HotPOP.com FREE Email Get your FREE POP email at www.HotPOP.com ----------------------------------------------- Sender: owner-freebsd-questions@FreeBSD.ORG Precedence: bulk List-ID: List-Archive: (Web Archive) List-Help: (List Instructions) List-Subscribe: List-Unsubscribe: X-Loop: FreeBSD.ORG On Sunday 10 November 2002 09:05 pm, Jacob Rhoden wrote: > Hi Guys, > > If I have two machines (one at work, and one at home) and one of them h= as > all ports firewalled (I can ssh from work to home, but not home to work= ). > Is there a way to open ssh on the home machine and have my work compute= r > connect to it (so that i have access to my work machine from home). > > Any ideas much appreciated... > > Thanks, > Jacob > > Jacob Rhoden Phone: +61 3 8344 6102 > ITS Division Email: jrhoden@unimelb.edu.au > Melbourne University Mobile: +61 403 788 386 > More detailed info on the issue will be much more helpful, but let's just= work=20 on possible assumptions here. It seems that you work computers are behind the firewall, since you can't= ssh=20 into your work computer. =20 If you have NATed computers at work, forward the incoming traffic on the = port=20 22 to your internal NATed computer's port 22, assuming that the sshd is u= sing=20 the default port 22. Of course, you'll have to allow all traffic coming = into=20 port 22. If your work computer has its own designated IP addr., just allow all inc= oming=20 traffic on port 22 (for your computer's IP addr only) in the firewall's=20 configuration. There can also be other possibilities that are causing this issue, but I = think=20 this should take care of the problem. Please feel free to edit/fix the=20 solutions that I've given above. good luck, Naydoe Maung To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-questions" in the body of the message