Ethical Hacking

Learn to find vulnerabilities before the bad guys do! Gain real world hands on hacking experience in our state of the art hacking lab. Course designed and taught by expert instructors with years of penetration testing experience. 12 student maximum in every class. Certification attempt included in every package.
Computer Forensics Training at InfoSec Institute

Gain the in-demand skills of a certified computer examiner, learn to recover trace data left behind by fraud, theft, and cybercrime perpetrators. Discover the source of computer crime and abuse at your organization so that it never happens again. All of our class sizes are guaranteed to be 12 students or less to facilitate one-on-one interaction with one of our expert instructors.




Network Security Secure-Shell
[Top] [All Lists]
<prev [Date] next>
[Advanced]
 <prev [Thread] next>

Re: Port Forwarding - Firewall Traversal

from [Pierre Neyron] Network Security [Permanent Link]
Subject: Re: Port Forwarding - Firewall Traversal
Date: Wed, 07 Jun 2006 15:51:27 +0200 
Henry Kupets wrote:

Hello,

I'd appreciate if somebody could suggest me how to configure SSH to
bypass a firewall restrictions.

I have a host (Oracle app.server) in DMZ that I need to access through
HTTP on port 1810 from the Windows PC that resides inside the LAN.  The
firewall does not allow traffic through port 1810 but allows traffic
through port 9000. (When I point the browser to http://appserver:1810 it
returns "The page cannot be displayed").
I was trying to set up port forwarding on the app.server using:

1) Changed sshd_config on the app.server (AllowTcpForwarding yes)
2) Ran on the app.server:  ssh -g -L 9000:appserver:1810 appserver

It's not working.  I can see in the firewall log that it allows the
first packet to go to the app.server on port 9000 and it drops the
second packet that goes for some reason to the app.server on port 1810.
 

The HTTP protocol is not ssh port fwding friendly.


Am I missing anything?

Thanks,
- - - - - - - - - -
Henry
 


app.server being a linux (?), I think it may be worth trying to use an
iptables rule instead of ssh fwding (but needs root privileges):
# iptables -t nat -A PREROUTING -s your-work-station -d appserver -p tcp
--dport 9000 -j REDIRECT --to-port 1810

another idea:
on appserver:
# ssh -D 9000 -g appserver
then configure appserver:9000 as a socks proxy server in firefox on your
workstation.

Regards,
Pierre
[More messages with this same subject...]




<Prev in Thread] Current Thread [Next in Thread>
Previous by Date:  RE: Using RSA key _and_ password, Alex Perematko
Next by Date:  how to automate public key authentication when server dual-boots two linuxes, John Lumby
Previous by Thread:  Port Forwarding - Firewall Traversal, Henry Kupets
Next by Thread:  Re: Port Forwarding - Firewall Traversal, Scott Baker
Indexes:  [Date] [Thread] [Top] [All Lists]