+ Post New Thread
Results 1 to 8 of 8
Wireless Networks Thread, Reverse proxying SSH... in Technical; First off apologies...because this isn't going to be worded too well. Now...... Does anyone know of a quick and cheap ...
  1. #1
    Joedetic's Avatar
    Join Date
    Jan 2006
    Location
    Walsall
    Posts
    1,316
    Thank Post
    6
    Thanked 13 Times in 13 Posts
    Rep Power
    22

    Reverse proxying SSH...

    First off apologies...because this isn't going to be worded too well. Now......

    Does anyone know of a quick and cheap way to implement reverse proxying for SSH servers?

    For example....with apache you can build it with proxy modules so that you can have multiple web servers on port 80 in effect (or so it appears to the end user). So you have setup a name based vhost to forward requests for cname.domain.tld to another server that isnt directly published to the web.

    So if i've got several ssh servers internally that i'd like to be accessable to the web all on port 22, is there something that i can do like the name based vhosts and proxying for apache to set this up with openSSH server?

    I was thinking something like m0n0wall or pfsense but i dont know if they support this and i couldnt find anything saying that they do.

    And oh yh...i dont have ISA

  2. #2

    webman's Avatar
    Join Date
    Nov 2005
    Location
    North East England
    Posts
    8,406
    Thank Post
    639
    Thanked 961 Times in 661 Posts
    Blog Entries
    2
    Rep Power
    324

    Re: Reverse proxying SSH...

    Have one of them facing externally to SSH in to, and then use port tunnelling to access any others. Or just run ssh client on that one to login to other servers.

  3. #3

    Geoff's Avatar
    Join Date
    Jun 2005
    Location
    Fylde, Lancs, UK.
    Posts
    11,804
    Thank Post
    110
    Thanked 583 Times in 504 Posts
    Blog Entries
    1
    Rep Power
    224

    Re: Reverse proxying SSH...

    Yep, I'd go with that. I think SSHing into your gateway/firewall then re-SSHing into whatever box is probably the simpler method.

  4. #4


    tom_newton's Avatar
    Join Date
    Sep 2006
    Location
    Leeds
    Posts
    4,475
    Thank Post
    866
    Thanked 850 Times in 672 Posts
    Rep Power
    196

    Re: Reverse proxying SSH...

    Can't say as I have ever seen this done, though there's no (network) reason it couldn't, but probably your easiest solution is a "middleman" ssh server - bit of a pigdog for scp though.

  5. #5
    Joedetic's Avatar
    Join Date
    Jan 2006
    Location
    Walsall
    Posts
    1,316
    Thank Post
    6
    Thanked 13 Times in 13 Posts
    Rep Power
    22

    Re: Reverse proxying SSH...

    Hmmm. That was the thing i wanted to avoid. Never mind. I'll just setup a freeBSD jail so that i don't have to have tonnes of boxes running


    Cheers guys.

  6. #6


    tom_newton's Avatar
    Join Date
    Sep 2006
    Location
    Leeds
    Posts
    4,475
    Thank Post
    866
    Thanked 850 Times in 672 Posts
    Rep Power
    196

    Re: Reverse proxying SSH...

    Hang on - just spotted this:
    http://penguin.fr/sshproxy/about.html
    which may or may not be a partial solution

    Other option: vpn then ssh - obviates the need for another server, initial connection is less graceful, but once you're in, it's the mutt's nuts.

  7. #7

    Geoff's Avatar
    Join Date
    Jun 2005
    Location
    Fylde, Lancs, UK.
    Posts
    11,804
    Thank Post
    110
    Thanked 583 Times in 504 Posts
    Blog Entries
    1
    Rep Power
    224

    Re: Reverse proxying SSH...

    Quote Originally Posted by tom_newton
    bit of a pigdog for scp though.
    What's wrong with:
    Code:
    scp ~/somefile.tgz me@proxy:root@remote-site:~/somefile.tgz
    ?

  8. #8


    tom_newton's Avatar
    Join Date
    Sep 2006
    Location
    Leeds
    Posts
    4,475
    Thank Post
    866
    Thanked 850 Times in 672 Posts
    Rep Power
    196

    Re: Reverse proxying SSH...

    Geoff: sod all by the looks of things - though I will admit, I never knew you could do that... useful for scp'ing to my home desktop, as the pf only goes to my fs.

SHARE:
+ Post New Thread

Similar Threads

  1. Replies: 0
    Last Post: 2nd November 2007, 09:58 AM
  2. DNS reverse look up zones.
    By Kyle in forum Windows
    Replies: 1
    Last Post: 16th October 2007, 08:42 AM
  3. Reverse Proxy and Moodle
    By wesleyw in forum How do you do....it?
    Replies: 3
    Last Post: 11th June 2007, 01:49 PM
  4. Reverse Proxying with Apache.
    By maniac in forum Web Development
    Replies: 7
    Last Post: 5th April 2007, 11:04 AM
  5. reverse proxy ajax apps
    By CyberNerd in forum Web Development
    Replies: 3
    Last Post: 15th June 2006, 07:32 PM

Thread Information

Users Browsing this Thread

There are currently 1 users browsing this thread. (0 members and 1 guests)

Posting Permissions

  • You may not post new threads
  • You may not post replies
  • You may not post attachments
  • You may not edit your posts
  •