ssh tunnel problems

Sat Jun 21 18:41:37 UTC 2008


Rick Bilonick wrote:
> On Fri, 2008-06-20 at 23:01 -0500, Kevin Martin wrote:
>   
>> Rick Bilonick wrote: 
>>     
>>> I'm using Fedora 8 on a server behind a firewall (with incoming ssh
>>> blocked) and my computer at home.
>>>
>>> I did the following on the server:
>>>
>>>   
>>>       
>>>> ssh -R 5000:localhost:22 me at home
>>>>     
>>>>         
>>> which connected to my home computer after I entered the password. (I
>>> could list files, etc.) I also set up /etc/ssh/sshd_config on the server
>>> to keep the connection open.
>>>
>>> At home I entered (using the password for user=server on the server):
>>>
>>>   
>>>       
>>>> ssh server at localhost -p 5000
>>>>     
>>>>         
>>> ssh: connect to host localhost port 5000: Connection refused
>>>
>>> I've tried adding:
>>>
>>> sshd : ALL : allow
>>> portmap : ALL : allow
>>>
>>> to /etc/hosts.allow but still get the same message. I have no idea why
>>> I'm not able to connect to the server through the ssh connection. I can
>>> ssh out from the home computer to other servers with port 22 not
>>> blocked.
>>>
>>> Rick B.
>>>
>>>   
>>>       
>> Rick,
>>
>> On your home machine, does a netstat -an | grep 5000 show you a
>> listening port?  When do you get if you add the -v flag to your
>> connection attempt from your home computer?
>>
>> FWIW, your use of localhost on both the server side and the home side
>> makes this a very confusing read.
>>
>> Kevin
>> -- 
>> fedora-list mailing list
>> fedora-list at redhat.com
>> To unsubscribe: https://www.redhat.com/mailman/listinfo/fedora-list
>>     
>
> Here's what I get:
>
> [chippy at localhost ~]$ netstat -an | grep 5000
> tcp        0      0 127.0.0.1:50001             0.0.0.0:*
> LISTEN  
>
>
> [chippy at localhost ~]$ ssh server at localhost -p 5000 -v
> OpenSSH_4.7p1, OpenSSL 0.9.8b 04 May 2006
> debug1: Reading configuration data /etc/ssh/ssh_config
> debug1: Applying options for *
> debug1: Connecting to localhost [127.0.0.1] port 5000.
> debug1: connect to address 127.0.0.1 port 5000: Connection refused
> ssh: connect to host localhost port 5000: Connection refused
>
> I'm using "localhost" because I was following an example. I guess I
> could substitute an IP for localhost. Isn't "localhost" just another
> name for the local computer? So on the first use of ssh, localhost
> refers to the server and on the second use of ssh, it refers to the home
> computer. At least, that's what I believe.
>
> Rick B.
>
>   

Rick,

The tunnel that you tried to establish from work to home is not running 
otherwise you would see a listening socket on port 5000 on your home 
machine.  Oh, and to find out what has port 50001 open do a "netstat 
-anp | grep 5000" and you'll see what process has it open.

Kevin

-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://listman.redhat.com/archives/fedora-list/attachments/20080621/60ccec52/attachment-0001.htm>