How to make a SSH Tunnel using BrazilFW

Several tutorials

How to make a SSH Tunnel using BrazilFW

Mensagempor BrazilFW » Seg Dez 24, 2007 8:03 pm

Version en Español
Português Version


Why to do that?
- SSH Tunneling is a very secure and fast way to get external access to any machine in your LAN without have to configure forwards or open any port at the firewall.
- SSH Tunnels cam be used to access BrazilFW Web Administrator from internet.


What do you need?
- A WORKING BrazilFW machine
- A good SSH client. I recommend PuTTY

Accessing Your BrazilFW Box Using PuTTY
- Run putty
- Go to Connection --> SSH
- Mark the option Enable compression (this will make your connection faster)
- Choose SSH protocol version 2
- Go to Session. Choose protocol SSH. The Port field will show 22.
- If you want to save those configurations select the session Default Settings and click Save
- Put your BrazilFW domain or ip (e.g. brazilfw.mysite.com or 200.200.200.200) at Host field and click Open
- Make your login at BrazilFW. The USERNAME is root and the password is that you chose when created your BrazilFW Floppy.


Example 1 - Using the SSH Tunnel to access any service at your LAN
Imagine you want to make a telnet access to 2 computers on your LAN (ServerA = 192.168.0.100 and ServerB = 192.168.0.200)
Telnet is a very insecure protocol and you don't want to forward and open the port 23 on your firewall
ServerA and ServerB has telnet running already at port 23 of each one.
You use putty to access your BrazilFW at domain brazilfw.mysite.com or IP 200.200.200.200

- Run putty
- Go to Connection --> SSH --> Tunnels
- At Source Port put 2001, at Destination put 192.168.0.100:22, click Add.
- At Source Port put 2002, at Destination put 192.168.0.101:22, click Add.
- Make your login to BrazilFW (Follow the instructions above).
- While putty is running the 2 tunnels will stay open as ports 2001 and 2002 in your local computer.
- Minimize putty.
- Open your favorite telnet client. To access ServerA use localhost and port 2001. To access ServerB use localhost and port 2002.
- You can use 127.0.0.1 to point you machine itself instead localhost.
- After finish using the tunnels, logout BrazilFW and close putty.


Example 2 - Using the SSH Tunnel to access the BrazilFW Web Administrator
Imagine you want to access the BrazilFW Web Administrator from internet and your internal BrazilFW IP number is 192.168.0.1

- Run putty
- Go to Connection --> SSH --> Tunnels
- At Source Port put 8180, at Destination put 192.168.0.1:8180, click Add.
- Make your login to BrazilFW (Follow the instructions above).
- While putty is running the tunnel will stay open as port 8180 in your local computer.
- Minimize putty.
- Open your favorite browser. Type: http://localhost:8180 or http://127.0.0.1:8180.
- After finish using the tunnel, logout BrazilFW and close putty.


Where can I get more information?
http://borosenclave.com/putty-ssh/
http://freesco.no-ip.org/VNC/

Credits, Licenses, Sources and Documentation
PuTTY - Simon Tatham - http://www.chiark.greenend.org.uk/~sgtatham/putty/
BrazilFW
 

Voltar para Several tutorials

Quem está online

Usuários navegando neste fórum: Nenhum usuário registrado e 0 visitantes