ssh reverse connection
Chaz Gilbert
chaz_meister_rock at yahoo.com
Fri Nov 21 17:29:14 CET 2008
Thanks for everyone's recommendations. What I didn't realize at the time of the initial post was there is a Satellite modem/router that sits in between the sshd and internet and performs NAT. Nobody knows how or wants to touch this satellite modem thingy.
Obviously, this makes things more difficult to reach the sshd directly from the internet.
Also, what I didn't realize was that there are a few other computers on this network. And that it is okay to require some level of user-interaction (in Haiti) to initiate a remote session.
As a result, I set up uVNC SC (http://uvnc.com/addons/singleclick.html) on a windows machine in the Haiti network that points to a DynDns VNC listener host. Voila! The person on the Haiti network just double-clicks the uVNC icon and starts a VNC session to California. Then the engineer can startup Putty on the Haiti windows computer and connect to the embedded sshd device.
So, again, thanks for all your suggestions. Although the engineers in California would rather just have remote access on demand directly to the embedded sshd device, this method works well enough.
-Chaz
--- On Fri, 11/21/08, Justin Krejci <jus at krytosvirus.com> wrote:
From: Justin Krejci <jus at krytosvirus.com>
Subject: RE: ssh reverse connection
To: chaz_meister_rock at yahoo.com, openbsd-newbies at sfobug.org
Date: Friday, November 21, 2008, 6:12 AM
I have written a perl script that will try to determine your public IP
address if you are using NAT. In a nutshell what it does is make an HTTP
call to various websites that will reply with your source IP. It then tracks
changes to your IP. You can call the script regularly from cron. When it
notices a change it generates an email with the IP address info.
A previous method I used was for a simple HTTP request to go to my personal
web server to some non-existent file (gets a 404) then I had a cgi on the
web server that would parse the log for requests to that URL and return the
log entry to the browser.
Email me directly if you're interested.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: http://mailman.theapt.org/pipermail/openbsd-newbies/attachments/20081121/498f1747/attachment-0001.html
More information about the Openbsd-newbies
mailing list