User Tools

Site Tools


reverse-ssh

Differences

This shows you the differences between two versions of the page.

Link to this comparison view

reverse-ssh [2019/07/21 20:03] (current)
Line 1: Line 1:
 +====== Reverse Tunnel with SSH ======
  
 +Here I'll describe how to establish a tunnel to gain access to a client behind a firewall or NAT router.
 +
 +The following command is run on the client. It will establish a listening socket on host.example.com port 22222:
 +  #ssh -R 22222:​localhost:​22 client@host.example.com
 +
 +Now connect to host.example.com with ssh from you workstation:​
 +  #ssh root@host.example.com
 +
 +Then from the new ssh terminal, connect through the client tunnel:
 +  #ssh root@localhost -p 22222
 +
 +Viola. You will now have root access to the client.\\ ​
 +
 +For windows clients this ssh server might be usefull, not tested though: [[http://​www.freesshd.com|Free SSHd]]
 +
 +For security if this should be used over GPRS lines:
 +  - The server **could** be host.example.com. There might be some benefits by doing this: Local files and browser interface with terminal.
 +  - The '​client'​ user should be added to the server, with no rights and unattended certificate login. It should only allow for the callback socket.
reverse-ssh.txt ยท Last modified: 2019/07/21 20:03 (external edit)