{"node_id": "f1dce8e3-2f95-11f1-b249-e86a64d24d78", "revisions": [{"id": "f1de301b-2f95-11f1-b206-e86a64d24d78", "node_id": "f1dce8e3-2f95-11f1-b249-e86a64d24d78", "user_id": "edc3f576-2f95-11f1-900f-e86a64d24d78", "author": "foxhop", "data": "SSH Tunnel for HTTP Traffic\r\n==============================\r\n\r\n**Are You stuck behind a firewall?**\r\n\r\n Does your school, library, work, or parents control where you surf and what ports you have open? Do you surf on such public domains and need more privacy? Are you sick of failing proxies? If you answered 'Y' to any of these questions then this tutorial is for you.\r\n\r\n**My Story** \r\n\r\n My place of employment has a firewall and it blocks nearly all outbound protocols and many great sites, such as foxhop.net or youtube.com. I need a way to get around the blocks and not get caught.\r\n\r\n\r\n\r\n.. contents:: Sections \r\n\r\nCommon Questions\r\n-------------------\r\n**What is the best way to get around a firewall?** \r\n \r\n Create an SSH tunnel from the work network to your home network.\r\n\r\n**My network administrator is smart, will I get caught?**\r\n \r\n No, you will most likely not get caught. All the firewall sees is a connection to a resource on the internet. When you browse the web using the tunnel all traffic is encrypted. If a network administrator captured packets he would only get garbage data. An SSH tunnel is basically a VPN between two computers or networks. 1337\t\r\n\r\n**Can a network admin stop a person or computer from tunneling?**\r\n \r\n The Admin will typically not know about the tunnel. From his view a tiny connection is being placed and is normally overlooked. The admin does have the ability to block the default SSH port 22. You can build your tunnel over any port (80 or 443). \r\n\r\nArticle Scope\r\n-------------------\r\n\r\n.. _Putty.exe: http://www.chiark.greenend.org.uk/~sgtatham/putty/download.html\r\n.. _Firefox: http://portableapps.com/apps/internet/firefox_portable\r\n\r\nWe will discuss the steps of building an SSH Tunnel for HTTP traffic between two computers on different networks. This guide will cover both windows and linux localhosts.\r\n\r\nThroughout this guide I will use the following terms, here are the definitions:\r\n\r\n*localhost*\r\n The computer at work or school.\r\n*remotehost*\r\n The computer or server that is offsite, which has the SSH server running.\r\n\r\n**What you need ...**\r\n\r\n#. Credentials to a remotehost running an SSH server. (openssh-server)\r\n#. A localhost computer crippled by a pesky network firewall.\r\n#. An SSH client, For windows get Putty.exe_\r\n#. Firefox_ ( Portable is best )\r\n\r\n**Why is this the best method?**\r\n\r\n#. Most of the configuration is done from the localhost (while at school or work).\r\n#. You don't need admin rights to run Putty.exe_, just place it on a USB drive.\r\n#. You don't need admin rights to run Firefox_ Portable, just place it on a USB drive.\r\n#. No changes need to be made on the remotehost ssh server.\r\n\r\n\r\nSSH Tunnel created from a Windows localhost\r\n-----------------------------------------------\r\n\r\nFollow this guide if your localhost (school or work) computer is Windows based.\r\n\r\nConfigure the SSH Server\r\n~~~~~~~~~~~~~~~~~~~~~~~~~~~~~\r\n\r\nThe remotehost just needs to have an SSH server installed, no configuration is needed. \r\n\r\nThis server could be running anywhere on the internet, we just need credentials to login.\r\n\r\nTo install openssh-server on Debian or Ubuntu linux type:\r\n\r\n.. code-block:: bash\r\n\r\n sudo apt-get install openssh-server\r\n \r\nWhen I'm at work, I establish an SSH Tunnel to my remotehost webserver at home. \r\n\r\nKeep in mind that this doesn't have to be your server, you just need credentials for SSH. \r\n\r\n\r\nConfigure the SSH Client\r\n~~~~~~~~~~~~~~~~~~~~~~~~~~~\r\n#. Download Putty.exe_ if you haven't already, you should follow along.\r\n\r\n#. Double click Putty.exe_.\r\n\r\n .. image:: http://engineer.siue.edu/puttyConnectScreen.gif\r\n\r\n#. The 'Host Name (or IP address)' box should point to the SSH enabled remoteserver. \r\n\r\n#. Toggle the SSH radio button to set the port to 22. (The native SSH port). \r\n\r\n#. Type a name into the 'Saved Sessions' box to save all the settings we toggle.\r\n\r\n#. Click the save button.\r\n\r\n#. There is a list of categories to the left of the putty window.\r\n\r\n#. Navigate to: ( Connection > SSH > Tunnel )\r\n\r\n#. You should be at a menu that is labeled 'Options controlling SSH port forwarding'.\r\n \r\n#. Click the 'Dynamic' radio button. \r\n\r\n#. Leave 'Destination' text box blank.\r\n \r\n#. Type '7070' into the 'Source port' text box.\r\n\r\n#. Click the 'Add' button.\r\n\r\n#. Save your configuration by going back to the 'Session' category, selecting your saved session, and pressing the 'save' button.\r\n\r\n#. Double-click your saved session.\r\n\r\n#. A black terminal window should appear.\r\n\r\n#. You will be prompted for a username and password. \r\n\r\n#. You should be greeted by the server if successful. Leave the putty window open.\r\n\r\n#. `Configure Firefox... <#configure-firefox-to-use-the-ssh-tunnel>`_\r\n\r\n\r\nSSH Tunnel created from a Linux localhost\r\n------------------------------------------------\r\n\r\nFollow this guide if your localhost (work or school) computer is Linux.\r\n\r\nCreate the tunnel\r\n~~~~~~~~~~~~~~~~~~~~~~\r\n\r\nOpen a terminal or console window, and enter the following command:\r\n\r\n.. code-block:: bash\r\n\r\n ssh -D 7070 user@remotehost_ip\r\n\r\nYou will be prompted for credentials on the remotehost. \r\n\r\nAll you need to do is login to establish the tunnel.\r\n\r\n\r\n\r\nConfigure Firefox to use the SSH Tunnel\r\n------------------------------------------\r\n\r\nSetup Socks 5 proxy.\r\n\r\n#. Open Firefox_.\r\n\r\n#. Click **Edit** -> **Preferences**\r\n\r\n#. Click the **Advanced** and **Network** tabs.\r\n\r\n#. Click the **Settings...** button.\r\n\r\n#. Click the **Manual Proxy Configuration** radio button\r\n\r\n#. In **Socks Host** type *localhost*. In port type *7070*.\r\n\r\n .. image:: /attachment/ff-settings.jpg\r\n :align: left \r\n\r\nYou should now be able to browse the Internet using your remote connection. All data will be passed through the remote hosts internet connection. All traffic will be encrypted between the localhost and the remotehost.\r\n\r\n\r\nTunnel to multiple vnc hosts behind a firewall\r\n==============================================================\r\n\r\n.. code-block:: bash\r\n\r\n ssh -L :: @\r\n\r\n ssh -L 31337:remote.foxhop.net:5900 user@foxhop.net\r\n\r\n ssh -L 31338:remote2.foxhop.net:5900 user@foxhop.net\r\n\r\nThen open vnc and point to 127.0.0.1:31338 or 127.0.0.1:31337\r\n\r\nTunnel DNS requests in firefox\r\n===================================\r\n\r\nabout:config\r\n\r\nnetwork.proxy.socks_remote_dns user set boolean true\r\n\r\n\r\nRemote tunnel a service\r\n=========================\r\n\r\nIn this scenario we are running a development web server (port 8888) on our workstation (joe) from our home network.\r\nWe would like to grant access to this development web server to people on the work network. We have ssh access\r\nto a host (mary) on the work network.\r\n\r\n#. We must enable GatewayPorts in mary:/etc/ssh/sshd_config to allow binding to 0.0.0.0 instead of 127.0.0.1:\r\n\r\n .. code-block:: config\r\n\r\n # Allow this host to bind forwarded ports to 0.0.0.0 instead of 127.0.0.1\r\n # Service will appear to run on this host, but will get forwarded over tunnel \r\n GatewayPorts yes\r\n\r\n#. We create a remote port forwarding tunnel from joe to mary:\r\n\r\n .. code-block:: bash\r\n\r\n # -g means gateway -R means remote port forwarding\r\n # prompt:~$ ssh -g -R :: @\r\n user@joe:~$ ssh -g -R 8888:127.0.0.1:8888 user@mary\r\n\r\n#. When the tunnel opens, verify that mary is binding/listening to 0.0.0.0:8888:\r\n\r\n .. code-block:: bash\r\n\r\n user@mary:~$ sudo netstat -nap | grep 8888\r\n tcp 0 0 0.0.0.0:8888 0.0.0.0:* LISTEN 17921/0 \r\n tcp6 0 0 :::8888 :::* LISTEN 17921/0 \r\n \r\n**Now people at work can access the home workstation web server running on joe by connecting to \\http://mary:8888 !**", "source_format": "rst", "revision_number": 26, "created": 1373379859000}, {"id": "f1de2bd9-2f95-11f1-822d-e86a64d24d78", "node_id": "f1dce8e3-2f95-11f1-b249-e86a64d24d78", "user_id": "edc3f576-2f95-11f1-900f-e86a64d24d78", "author": "foxhop", "data": "SSH Tunnel for HTTP Traffic\r\n==============================\r\n\r\n**Are You stuck behind a firewall?**\r\n\r\n Does your school, library, work, or parents control where you surf and what ports you have open? Do you surf on such public domains and need more privacy? Are you sick of failing proxies? If you answered 'Y' to any of these questions then this tutorial is for you.\r\n\r\n**My Story** \r\n\r\n My place of employment has a firewall and it blocks nearly all outbound protocols and many great sites, such as foxhop.net or youtube.com. I need a way to get around the blocks and not get caught.\r\n\r\n\r\n\r\n.. contents:: Sections \r\n\r\nCommon Questions\r\n-------------------\r\n**What is the best way to get around a firewall?** \r\n \r\n Create an SSH tunnel from the work network to your home network.\r\n\r\n**My network administrator is smart, will I get caught?**\r\n \r\n No, you will most likely not get caught. All the firewall sees is a connection to a resource on the internet. When you browse the web using the tunnel all traffic is encrypted. If a network administrator captured packets he would only get garbage data. An SSH tunnel is basically a VPN between two computers or networks. 1337\t\r\n\r\n**Can a network admin stop a person or computer from tunneling?**\r\n \r\n The Admin will typically not know about the tunnel. From his view a tiny connection is being placed and is normally overlooked. The admin does have the ability to block the default SSH port 22. You can build your tunnel over any port (80 or 443). \r\n\r\nArticle Scope\r\n-------------------\r\n\r\n.. _Putty.exe: http://www.chiark.greenend.org.uk/~sgtatham/putty/download.html\r\n.. _Firefox: http://portableapps.com/apps/internet/firefox_portable\r\n\r\nWe will discuss the steps of building an SSH Tunnel for HTTP traffic between two computers on different networks. This guide will cover both windows and linux localhosts.\r\n\r\nThroughout this guide I will use the following terms, here are the definitions:\r\n\r\n*localhost*\r\n The computer at work or school.\r\n*remotehost*\r\n The computer or server that is offsite, which has the SSH server running.\r\n\r\n**What you need ...**\r\n\r\n#. Credentials to a remotehost running an SSH server. (openssh-server)\r\n#. A localhost computer crippled by a pesky network firewall.\r\n#. An SSH client, For windows get Putty.exe_\r\n#. Firefox_ ( Portable is best )\r\n\r\n**Why is this the best method?**\r\n\r\n#. Most of the configuration is done from the localhost (while at school or work).\r\n#. You don't need admin rights to run Putty.exe_, just place it on a USB drive.\r\n#. You don't need admin rights to run Firefox_ Portable, just place it on a USB drive.\r\n#. No changes need to be made on the remotehost ssh server.\r\n\r\n\r\nSSH Tunnel created from a Windows localhost\r\n-----------------------------------------------\r\n\r\nFollow this guide if your localhost (school or work) computer is Windows based.\r\n\r\nConfigure the SSH Server\r\n~~~~~~~~~~~~~~~~~~~~~~~~~~~~~\r\n\r\nThe remotehost just needs to have an SSH server installed, no configuration is needed. \r\n\r\nThis server could be running anywhere on the internet, we just need credentials to login.\r\n\r\nTo install openssh-server on Debian or Ubuntu linux type:\r\n\r\n.. code-block:: bash\r\n\r\n sudo apt-get install openssh-server\r\n \r\nWhen I'm at work, I establish an SSH Tunnel to my remotehost webserver at home. \r\n\r\nKeep in mind that this doesn't have to be your server, you just need credentials for SSH. \r\n\r\n\r\nConfigure the SSH Client\r\n~~~~~~~~~~~~~~~~~~~~~~~~~~~\r\n#. Download Putty.exe_ if you haven't already, you should follow along.\r\n\r\n#. Double click Putty.exe_.\r\n\r\n .. image:: http://engineer.siue.edu/puttyConnectScreen.gif\r\n\r\n#. The 'Host Name (or IP address)' box should point to the SSH enabled remoteserver. \r\n\r\n#. Toggle the SSH radio button to set the port to 22. (The native SSH port). \r\n\r\n#. Type a name into the 'Saved Sessions' box to save all the settings we toggle.\r\n\r\n#. Click the save button.\r\n\r\n#. There is a list of categories to the left of the putty window.\r\n\r\n#. Navigate to: ( Connection > SSH > Tunnel )\r\n\r\n#. You should be at a menu that is labeled 'Options controlling SSH port forwarding'.\r\n \r\n#. Click the 'Dynamic' radio button. \r\n\r\n#. Leave 'Destination' text box blank.\r\n \r\n#. Type '7070' into the 'Source port' text box.\r\n\r\n#. Click the 'Add' button.\r\n\r\n#. Save your configuration by going back to the 'Session' category, selecting your saved session, and pressing the 'save' button.\r\n\r\n#. Double-click your saved session.\r\n\r\n#. A black terminal window should appear.\r\n\r\n#. You will be prompted for a username and password. \r\n\r\n#. You should be greeted by the server if successful. Leave the putty window open.\r\n\r\n#. `Configure Firefox... <#configure-firefox-to-use-the-ssh-tunnel>`_\r\n\r\n\r\nSSH Tunnel created from a Linux localhost\r\n------------------------------------------------\r\n\r\nFollow this guide if your localhost (work or school) computer is Linux.\r\n\r\nCreate the tunnel\r\n~~~~~~~~~~~~~~~~~~~~~~\r\n\r\nOpen a terminal or console window, and enter the following command:\r\n\r\n.. code-block:: bash\r\n\r\n ssh -D 7070 user@remotehost_ip\r\n\r\nYou will be prompted for credentials on the remotehost. \r\n\r\nAll you need to do is login to establish the tunnel.\r\n\r\n\r\n\r\nConfigure Firefox to use the SSH Tunnel\r\n------------------------------------------\r\n\r\nSetup Socks 5 proxy.\r\n\r\n#. Open Firefox_.\r\n\r\n#. Click **Edit** -> **Preferences**\r\n\r\n#. Click the **Advanced** and **Network** tabs.\r\n\r\n#. Click the **Settings...** button.\r\n\r\n#. Click the **Manual Proxy Configuration** radio button\r\n\r\n#. In **Socks Host** type *localhost*. In port type *7070*.\r\n\r\n .. image:: /attachment/ff-settings.jpg\r\n :align: left \r\n\r\nYou should now be able to browse the Internet using your remote connection. All data will be passed through the remote hosts internet connection. All traffic will be encrypted between the localhost and the remotehost.\r\n\r\n\r\nTunnel to multiple vnc hosts behind a firewall\r\n==============================================================\r\n\r\n.. code-block:: bash\r\n\r\n ssh -L :: @\r\n\r\n ssh -L 31337:remote.foxhop.net:5900 user@foxhop.net\r\n\r\n ssh -L 31338:remote2.foxhop.net:5900 user@foxhop.net\r\n\r\nThen open vnc and point to 127.0.0.1:31338 or 127.0.0.1:31337\r\n\r\nTunnel DNS requests in firefox\r\n===================================\r\n\r\nabout:config\r\n\r\nnetwork.proxy.socks_remote_dns user set boolean true\r\n\r\n\r\nRemote tunnel a service\r\n=========================\r\n\r\nIn this scenario we are running a development web server (port 8888) on our workstation (joe) from our home network.\r\nWe would like to grant access to this development web server to people on the work network. We have ssh access\r\nto a host (mary) on the work network.\r\n\r\n#. We must enable GatewayPorts in mary:/etc/ssh/sshd_config to allow binding to 0.0.0.0 instead of 127.0.0.1:\r\n\r\n .. code-block:: config\r\n\r\n # Allow this host to bind forwarded ports to 0.0.0.0 instead of 127.0.0.1\r\n # Service will appear to run on this host, but will get forwarded over tunnel \r\n GatewayPorts yes\r\n\r\n#. We create a remote port forwarding tunnel from joe to mary:\r\n\r\n .. code-block:: bash\r\n \r\n user@joe:~$ ssh -g -R 8888:127.0.0.1:8888 user@mary\r\n\r\n#. When the tunnel opens, verify that mary is binding/listening to 0.0.0.0:8888:\r\n\r\n .. code-block:: bash\r\n\r\n user@mary:~$ sudo netstat -nap | grep 8888\r\n tcp 0 0 0.0.0.0:8888 0.0.0.0:* LISTEN 17921/0 \r\n tcp6 0 0 :::8888 :::* LISTEN 17921/0 \r\n \r\n**Now people at work can access the home workstation web server running on joe by connecting to \\http://mary:8888 !**", "source_format": "rst", "revision_number": 25, "created": 1373379368000}, {"id": "f1de279c-2f95-11f1-94e0-e86a64d24d78", "node_id": "f1dce8e3-2f95-11f1-b249-e86a64d24d78", "user_id": "edc3f576-2f95-11f1-900f-e86a64d24d78", "author": "foxhop", "data": "SSH Tunnel for HTTP Traffic\r\n==============================\r\n\r\n**Are You stuck behind a firewall?**\r\n\r\n Does your school, library, work, or parents control where you surf and what ports you have open? Do you surf on such public domains and need more privacy? Are you sick of failing proxies? If you answered 'Y' to any of these questions then this tutorial is for you.\r\n\r\n**My Story** \r\n\r\n My place of employment has a firewall and it blocks nearly all outbound protocols and many great sites, such as foxhop.net or youtube.com. I need a way to get around the blocks and not get caught.\r\n\r\n\r\n\r\n.. contents:: Sections \r\n\r\nCommon Questions\r\n-------------------\r\n**What is the best way to get around a firewall?** \r\n \r\n Create an SSH tunnel from the work network to your home network.\r\n\r\n**My network administrator is smart, will I get caught?**\r\n \r\n No, you will most likely not get caught. All the firewall sees is a connection to a resource on the internet. When you browse the web using the tunnel all traffic is encrypted. If a network administrator captured packets he would only get garbage data. An SSH tunnel is basically a VPN between two computers or networks. 1337\t\r\n\r\n**Can a network admin stop a person or computer from tunneling?**\r\n \r\n The Admin will typically not know about the tunnel. From his view a tiny connection is being placed and is normally overlooked. The admin does have the ability to block the default SSH port 22. You can build your tunnel over any port (80 or 443). \r\n\r\nArticle Scope\r\n-------------------\r\n\r\n.. _Putty.exe: http://www.chiark.greenend.org.uk/~sgtatham/putty/download.html\r\n.. _Firefox: http://portableapps.com/apps/internet/firefox_portable\r\n\r\nWe will discuss the steps of building an SSH Tunnel for HTTP traffic between two computers on different networks. This guide will cover both windows and linux localhosts.\r\n\r\nThroughout this guide I will use the following terms, here are the definitions:\r\n\r\n*localhost*\r\n The computer at work or school.\r\n*remotehost*\r\n The computer or server that is offsite, which has the SSH server running.\r\n\r\n**What you need ...**\r\n\r\n#. Credentials to a remotehost running an SSH server. (openssh-server)\r\n#. A localhost computer crippled by a pesky network firewall.\r\n#. An SSH client, For windows get Putty.exe_\r\n#. Firefox_ ( Portable is best )\r\n\r\n**Why is this the best method?**\r\n\r\n#. Most of the configuration is done from the localhost (while at school or work).\r\n#. You don't need admin rights to run Putty.exe_, just place it on a USB drive.\r\n#. You don't need admin rights to run Firefox_ Portable, just place it on a USB drive.\r\n#. No changes need to be made on the remotehost ssh server.\r\n\r\n\r\nSSH Tunnel created from a Windows localhost\r\n-----------------------------------------------\r\n\r\nFollow this guide if your localhost (school or work) computer is Windows based.\r\n\r\nConfigure the SSH Server\r\n~~~~~~~~~~~~~~~~~~~~~~~~~~~~~\r\n\r\nThe remotehost SSH server doesn't need to be configured. \r\n\r\nJust be sure its installed and running and that you have credentials to login. It just needs to be installed and running and you just need credentials.\r\n\r\nTo install openSSH-server on Debian or Ubuntu linux type:\r\n\r\n.. code-block:: apache\r\n\r\n sudo apt-get install ssh\r\n \r\nWhen I'm at work, I establish an SSH Tunnel to my remotehost webserver at home. \r\n\r\nKeep in mind that this doesn't have to be your server, you just need credentials for SSH. \r\n\r\n\r\nConfigure the SSH Client\r\n~~~~~~~~~~~~~~~~~~~~~~~~~~~\r\n#. Download Putty.exe_ if you haven't already, you should follow along.\r\n\r\n#. Double click Putty.exe_.\r\n\r\n .. image:: http://engineer.siue.edu/puttyConnectScreen.gif\r\n\r\n#. The 'Host Name (or IP address)' box should point to the SSH enabled remoteserver. \r\n\r\n#. Toggle the SSH radio button to set the port to 22. (The native SSH port). \r\n\r\n#. Type a name into the 'Saved Sessions' box to save all the settings we toggle.\r\n\r\n#. Click the save button.\r\n\r\n#. There is a list of categories to the left of the putty window.\r\n\r\n#. Navigate to: ( Connection > SSH > Tunnel )\r\n\r\n#. You should be at a menu that is labeled 'Options controlling SSH port forwarding'.\r\n \r\n#. Click the 'Dynamic' radio button. \r\n\r\n#. Leave 'Destination' text box blank.\r\n \r\n#. Type '7070' into the 'Source port' text box.\r\n\r\n#. Click the 'Add' button.\r\n\r\n#. Save your configuration by going back to the 'Session' category, selecting your saved session, and pressing the 'save' button.\r\n\r\n#. Double-click your saved session.\r\n\r\n#. A black terminal window should appear.\r\n\r\n#. You will be prompted for a username and password. \r\n\r\n#. You should be greeted by the server if successful. Leave the putty window open.\r\n\r\n#. `Configure Firefox... <#configure-firefox-to-use-the-ssh-tunnel>`_\r\n\r\n\r\nSSH Tunnel created from a Linux localhost\r\n------------------------------------------------\r\n\r\nFollow this guide if your localhost (work or school) computer is Linux.\r\n\r\nCreate the tunnel\r\n~~~~~~~~~~~~~~~~~~~~~~\r\n\r\nOpen a terminal or console window, and enter the following command:\r\n\r\n.. code-block:: bash\r\n\r\n ssh -D 7070 user@remotehost_ip\r\n\r\nYou will be prompted for credentials on the remotehost. \r\n\r\nAll you need to do is login to establish the tunnel.\r\n\r\n\r\n\r\nConfigure Firefox to use the SSH Tunnel\r\n------------------------------------------\r\n\r\nSetup Socks 5 proxy.\r\n\r\n#. Open Firefox_.\r\n\r\n#. Click **Edit** -> **Preferences**\r\n\r\n#. Click the **Advanced** and **Network** tabs.\r\n\r\n#. Click the **Settings...** button.\r\n\r\n#. Click the **Manual Proxy Configuration** radio button\r\n\r\n#. In **Socks Host** type *localhost*. In port type *7070*.\r\n\r\n .. image:: /attachment/ff-settings.jpg\r\n :align: left \r\n\r\nYou should now be able to browse the Internet using your remote connection. All data will be passed through the remote hosts internet connection. All traffic will be encrypted between the localhost and the remotehost.\r\n\r\n\r\nTunnel to multiple vnc hosts behind a firewall\r\n==============================================================\r\n\r\n.. code-block:: bash\r\n\r\n ssh -L :: @\r\n\r\n ssh -L 31337:remote.foxhop.net:5900 user@foxhop.net\r\n\r\n ssh -L 31338:remote2.foxhop.net:5900 user@foxhop.net\r\n\r\nThen open vnc and point to 127.0.0.1:31338 or 127.0.0.1:31337\r\n\r\nTunnel DNS requests in firefox\r\n===================================\r\n\r\nabout:config\r\n\r\nnetwork.proxy.socks_remote_dns user set boolean true\r\n\r\n\r\nRemote tunnel a service\r\n=========================\r\n\r\nIn this scenario we are running a development web server (port 8888) on our workstation (joe) from our home network.\r\nWe would like to grant access to this development web server to people on the work network. We have ssh access\r\nto a host (mary) on the work network.\r\n\r\n#. We must enable GatewayPorts in mary:/etc/ssh/sshd_config to allow binding to 0.0.0.0 instead of 127.0.0.1:\r\n\r\n .. code-block:: config\r\n\r\n # Allow this host to bind forwarded ports to 0.0.0.0 instead of 127.0.0.1\r\n # Service will appear to run on this host, but will get forwarded over tunnel \r\n GatewayPorts yes\r\n\r\n#. We create a remote port forwarding tunnel from joe to mary:\r\n\r\n .. code-block:: bash\r\n \r\n user@joe:~$ ssh -g -R 8888:127.0.0.1:8888 user@mary\r\n\r\n#. When the tunnel opens, verify that mary is binding/listening to 0.0.0.0:8888:\r\n\r\n .. code-block:: bash\r\n\r\n user@mary:~$ sudo netstat -nap | grep 8888\r\n tcp 0 0 0.0.0.0:8888 0.0.0.0:* LISTEN 17921/0 \r\n tcp6 0 0 :::8888 :::* LISTEN 17921/0 \r\n \r\n**Now people at work can access the home workstation web server running on joe by connecting to \\http://mary:8888 !**", "source_format": "rst", "revision_number": 24, "created": 1373379163000}, {"id": "f1de236f-2f95-11f1-9cb7-e86a64d24d78", "node_id": "f1dce8e3-2f95-11f1-b249-e86a64d24d78", "user_id": "edc3f576-2f95-11f1-900f-e86a64d24d78", "author": "foxhop", "data": "SSH Tunnel for HTTP Traffic\r\n==============================\r\n\r\n**Are You stuck behind a firewall?**\r\n\r\n Does your school, library, work, or parents control where you surf and what ports you have open? Do you surf on such public domains and need more privacy? Are you sick of failing proxies? If you answered 'Y' to any of these questions then this tutorial is for you.\r\n\r\n**My Story** \r\n\r\n My place of employment has a firewall and it blocks nearly all outbound protocols and many great sites, such as foxhop.net or youtube.com. I need a way to get around the blocks and not get caught.\r\n\r\n\r\n\r\n.. contents:: Sections \r\n\r\nCommon Questions\r\n-------------------\r\n**What is the best way to get around a firewall?** \r\n \r\n Create an SSH tunnel from the work network to your home network.\r\n\r\n**My network administrator is smart, will I get caught?**\r\n \r\n No, you will most likely not get caught. All the firewall sees is a connection to a resource on the internet. When you browse the web using the tunnel all traffic is encrypted. If a network administrator captured packets he would only get garbage data. An SSH tunnel is basically a VPN between two computers or networks. 1337\t\r\n\r\n**Can a network admin stop a person or computer from tunneling?**\r\n \r\n The Admin will typically not know about the tunnel. From his view a tiny connection is being placed and is normally overlooked. The admin does have the ability to block the default SSH port 22. You can build your tunnel over any port (port 80 or 443). \r\n\r\nArticle Scope\r\n-------------------\r\n\r\n.. _Putty.exe: http://www.chiark.greenend.org.uk/~sgtatham/putty/download.html\r\n.. _Firefox: http://portableapps.com/apps/internet/firefox_portable\r\n\r\nWe will discuss the steps of building an SSH Tunnel for HTTP traffic between two computers on different networks. This guide will cover both windows and linux localhosts.\r\n\r\nThroughout this guide I will use the following terms, here are the definitions:\r\n\r\n*localhost*\r\n The computer at work or school.\r\n*remotehost*\r\n The computer or server that is offsite, which has the SSH server running.\r\n\r\n**What you need ...**\r\n\r\n#. Credentials to a remotehost running an SSH server. (openssh-server)\r\n#. A localhost computer crippled by a pesky network firewall.\r\n#. An SSH client, For windows get Putty.exe_\r\n#. Firefox_ ( Portable is best )\r\n\r\n**Why is this the best method?**\r\n\r\n#. Most of the configuration is done from the localhost (while at school or work).\r\n#. You don't need admin rights to run Putty.exe_, just place it on a USB drive.\r\n#. You don't need admin rights to run Firefox_ Portable, just place it on a USB drive.\r\n#. No changes need to be made on the remotehost ssh server.\r\n\r\n\r\nSSH Tunnel created from a Windows localhost\r\n-----------------------------------------------\r\n\r\nFollow this guide if your localhost (school or work) computer is Windows based.\r\n\r\nConfigure the SSH Server\r\n~~~~~~~~~~~~~~~~~~~~~~~~~~~~~\r\n\r\nThe remotehost SSH server doesn't need to be configured. \r\n\r\nJust be sure its installed and running and that you have credentials to login. It just needs to be installed and running and you just need credentials.\r\n\r\nTo install openSSH-server on Debian or Ubuntu linux type:\r\n\r\n.. code-block:: apache\r\n\r\n sudo apt-get install ssh\r\n \r\nWhen I'm at work, I establish an SSH Tunnel to my remotehost webserver at home. \r\n\r\nKeep in mind that this doesn't have to be your server, you just need credentials for SSH. \r\n\r\n\r\nConfigure the SSH Client\r\n~~~~~~~~~~~~~~~~~~~~~~~~~~~\r\n#. Download Putty.exe_ if you haven't already, you should follow along.\r\n\r\n#. Double click Putty.exe_.\r\n\r\n .. image:: http://engineer.siue.edu/puttyConnectScreen.gif\r\n\r\n#. The 'Host Name (or IP address)' box should point to the SSH enabled remoteserver. \r\n\r\n#. Toggle the SSH radio button to set the port to 22. (The native SSH port). \r\n\r\n#. Type a name into the 'Saved Sessions' box to save all the settings we toggle.\r\n\r\n#. Click the save button.\r\n\r\n#. There is a list of categories to the left of the putty window.\r\n\r\n#. Navigate to: ( Connection > SSH > Tunnel )\r\n\r\n#. You should be at a menu that is labeled 'Options controlling SSH port forwarding'.\r\n \r\n#. Click the 'Dynamic' radio button. \r\n\r\n#. Leave 'Destination' text box blank.\r\n \r\n#. Type '7070' into the 'Source port' text box.\r\n\r\n#. Click the 'Add' button.\r\n\r\n#. Save your configuration by going back to the 'Session' category, selecting your saved session, and pressing the 'save' button.\r\n\r\n#. Double-click your saved session.\r\n\r\n#. A black terminal window should appear.\r\n\r\n#. You will be prompted for a username and password. \r\n\r\n#. You should be greeted by the server if successful. Leave the putty window open.\r\n\r\n#. `Configure Firefox... <#configure-firefox-to-use-the-ssh-tunnel>`_\r\n\r\n\r\nSSH Tunnel created from a Linux localhost\r\n------------------------------------------------\r\n\r\nFollow this guide if your localhost (work or school) computer is Linux.\r\n\r\nCreate the tunnel\r\n~~~~~~~~~~~~~~~~~~~~~~\r\n\r\nOpen a terminal or console window, and enter the following command:\r\n\r\n.. code-block:: bash\r\n\r\n ssh -D 7070 user@remotehost_ip\r\n\r\nYou will be prompted for credentials on the remotehost. \r\n\r\nAll you need to do is login to establish the tunnel.\r\n\r\n\r\n\r\nConfigure Firefox to use the SSH Tunnel\r\n------------------------------------------\r\n\r\nSetup Socks 5 proxy.\r\n\r\n#. Open Firefox_.\r\n\r\n#. Click **Edit** -> **Preferences**\r\n\r\n#. Click the **Advanced** and **Network** tabs.\r\n\r\n#. Click the **Settings...** button.\r\n\r\n#. Click the **Manual Proxy Configuration** radio button\r\n\r\n#. In **Socks Host** type *localhost*. In port type *7070*.\r\n\r\n .. image:: /attachment/ff-settings.jpg\r\n :align: left \r\n\r\nYou should now be able to browse the Internet using your remote connection. All data will be passed through the remote hosts internet connection. All traffic will be encrypted between the localhost and the remotehost.\r\n\r\n\r\nTunnel to multiple vnc hosts behind a firewall\r\n==============================================================\r\n\r\n.. code-block:: bash\r\n\r\n ssh -L :: @\r\n\r\n ssh -L 31337:remote.foxhop.net:5900 user@foxhop.net\r\n\r\n ssh -L 31338:remote2.foxhop.net:5900 user@foxhop.net\r\n\r\nThen open vnc and point to 127.0.0.1:31338 or 127.0.0.1:31337\r\n\r\nTunnel DNS requests in firefox\r\n===================================\r\n\r\nabout:config\r\n\r\nnetwork.proxy.socks_remote_dns user set boolean true\r\n\r\n\r\nRemote tunnel a service\r\n=========================\r\n\r\nIn this scenario we are running a development web server (port 8888) on our workstation (joe) from our home network.\r\nWe would like to grant access to this development web server to people on the work network. We have ssh access\r\nto a host (mary) on the work network.\r\n\r\n#. We must enable GatewayPorts in mary:/etc/ssh/sshd_config to allow binding to 0.0.0.0 instead of 127.0.0.1:\r\n\r\n .. code-block:: config\r\n\r\n # Allow this host to bind forwarded ports to 0.0.0.0 instead of 127.0.0.1\r\n # Service will appear to run on this host, but will get forwarded over tunnel \r\n GatewayPorts yes\r\n\r\n#. We create a remote port forwarding tunnel from joe to mary:\r\n\r\n .. code-block:: bash\r\n \r\n user@joe:~$ ssh -g -R 8888:127.0.0.1:8888 user@mary\r\n\r\n#. When the tunnel opens, verify that mary is binding/listening to 0.0.0.0:8888:\r\n\r\n .. code-block:: bash\r\n\r\n user@mary:~$ sudo netstat -nap | grep 8888\r\n tcp 0 0 0.0.0.0:8888 0.0.0.0:* LISTEN 17921/0 \r\n tcp6 0 0 :::8888 :::* LISTEN 17921/0 \r\n \r\n**Now people at work can access the home workstation web server running on joe by connecting to \\http://mary:8888 !**", "source_format": "rst", "revision_number": 23, "created": 1373379153000}, {"id": "f1de1f2a-2f95-11f1-9e28-e86a64d24d78", "node_id": "f1dce8e3-2f95-11f1-b249-e86a64d24d78", "user_id": "edc3f576-2f95-11f1-900f-e86a64d24d78", "author": "foxhop", "data": "SSH Tunnel for HTTP Traffic\r\n==============================\r\n\r\n**Are You stuck behind a firewall?**\r\n\r\n Does your school, library, work, or parents control where you surf and what ports you have open? Do you surf on such public domains and need more privacy? Are you sick of failing proxies? If you answered 'Y' to any of these questions then this tutorial is for you.\r\n\r\n**My Story** \r\n\r\n My place of employment has a firewall and it blocks nearly all outbound protocols and many great sites, such as foxhop.net or youtube.com. I need a way to get around the blocks and not get caught.\r\n\r\n\r\n\r\n.. contents:: Sections \r\n\r\nCommon Questions\r\n-------------------\r\n**What is the best way to get around a firewall?** \r\n \r\n Create an SSH tunnel from the work network to your home network.\r\n\r\n**My network administrator is smart, will I get caught?**\r\n \r\n No, you will most likely not get caught. All the firewall sees is a connection to a resource on the internet. When you browse the web using the tunnel all traffic is encrypted. If a network administrator captured packets he would only get garbage data. An SSH tunnel is basically a VPN between two computers or networks. 1337\t\r\n\r\n**Can a network admin stop a person or computer from tunneling?**\r\n \r\n The Admin will typically not know about the tunnel. From his view a tiny connection is being placed and is normally overlooked. The admin does have the ability to block the default SSH port 22. You can build your tunnel over any port.\r\n\r\nArticle Scope\r\n-------------------\r\n\r\n.. _Putty.exe: http://www.chiark.greenend.org.uk/~sgtatham/putty/download.html\r\n.. _Firefox: http://portableapps.com/apps/internet/firefox_portable\r\n\r\nWe will discuss the steps of building an SSH Tunnel for HTTP traffic between two computers on different networks. This guide will cover both windows and linux localhosts.\r\n\r\nThroughout this guide I will use the following terms, here are the definitions:\r\n\r\n*localhost*\r\n The computer at work or school.\r\n*remotehost*\r\n The computer or server that is offsite, which has the SSH server running.\r\n\r\n**What you need ...**\r\n\r\n#. Credentials to a remotehost running an SSH server. (openssh-server)\r\n#. A localhost computer crippled by a pesky network firewall.\r\n#. An SSH client, For windows get Putty.exe_\r\n#. Firefox_ ( Portable is best )\r\n\r\n**Why is this the best method?**\r\n\r\n#. Most of the configuration is done from the localhost (while at school or work).\r\n#. You don't need admin rights to run Putty.exe_, just place it on a USB drive.\r\n#. You don't need admin rights to run Firefox_ Portable, just place it on a USB drive.\r\n#. No changes need to be made on the remotehost ssh server.\r\n\r\n\r\nSSH Tunnel created from a Windows localhost\r\n-----------------------------------------------\r\n\r\nFollow this guide if your localhost (school or work) computer is Windows based.\r\n\r\nConfigure the SSH Server\r\n~~~~~~~~~~~~~~~~~~~~~~~~~~~~~\r\n\r\nThe remotehost SSH server doesn't need to be configured. \r\n\r\nJust be sure its installed and running and that you have credentials to login. It just needs to be installed and running and you just need credentials.\r\n\r\nTo install openSSH-server on Debian or Ubuntu linux type:\r\n\r\n.. code-block:: apache\r\n\r\n sudo apt-get install ssh\r\n \r\nWhen I'm at work, I establish an SSH Tunnel to my remotehost webserver at home. \r\n\r\nKeep in mind that this doesn't have to be your server, you just need credentials for SSH. \r\n\r\n\r\nConfigure the SSH Client\r\n~~~~~~~~~~~~~~~~~~~~~~~~~~~\r\n#. Download Putty.exe_ if you haven't already, you should follow along.\r\n\r\n#. Double click Putty.exe_.\r\n\r\n .. image:: http://engineer.siue.edu/puttyConnectScreen.gif\r\n\r\n#. The 'Host Name (or IP address)' box should point to the SSH enabled remoteserver. \r\n\r\n#. Toggle the SSH radio button to set the port to 22. (The native SSH port). \r\n\r\n#. Type a name into the 'Saved Sessions' box to save all the settings we toggle.\r\n\r\n#. Click the save button.\r\n\r\n#. There is a list of categories to the left of the putty window.\r\n\r\n#. Navigate to: ( Connection > SSH > Tunnel )\r\n\r\n#. You should be at a menu that is labeled 'Options controlling SSH port forwarding'.\r\n \r\n#. Click the 'Dynamic' radio button. \r\n\r\n#. Leave 'Destination' text box blank.\r\n \r\n#. Type '7070' into the 'Source port' text box.\r\n\r\n#. Click the 'Add' button.\r\n\r\n#. Save your configuration by going back to the 'Session' category, selecting your saved session, and pressing the 'save' button.\r\n\r\n#. Double-click your saved session.\r\n\r\n#. A black terminal window should appear.\r\n\r\n#. You will be prompted for a username and password. \r\n\r\n#. You should be greeted by the server if successful. Leave the putty window open.\r\n\r\n#. `Configure Firefox... <#configure-firefox-to-use-the-ssh-tunnel>`_\r\n\r\n\r\nSSH Tunnel created from a Linux localhost\r\n------------------------------------------------\r\n\r\nFollow this guide if your localhost (work or school) computer is Linux.\r\n\r\nCreate the tunnel\r\n~~~~~~~~~~~~~~~~~~~~~~\r\n\r\nOpen a terminal or console window, and enter the following command:\r\n\r\n.. code-block:: bash\r\n\r\n ssh -D 7070 user@remotehost_ip\r\n\r\nYou will be prompted for credentials on the remotehost. \r\n\r\nAll you need to do is login to establish the tunnel.\r\n\r\n\r\n\r\nConfigure Firefox to use the SSH Tunnel\r\n------------------------------------------\r\n\r\nSetup Socks 5 proxy.\r\n\r\n#. Open Firefox_.\r\n\r\n#. Click **Edit** -> **Preferences**\r\n\r\n#. Click the **Advanced** and **Network** tabs.\r\n\r\n#. Click the **Settings...** button.\r\n\r\n#. Click the **Manual Proxy Configuration** radio button\r\n\r\n#. In **Socks Host** type *localhost*. In port type *7070*.\r\n\r\n .. image:: /attachment/ff-settings.jpg\r\n :align: left \r\n\r\nYou should now be able to browse the Internet using your remote connection. All data will be passed through the remote hosts internet connection. All traffic will be encrypted between the localhost and the remotehost.\r\n\r\n\r\nTunnel to multiple vnc hosts behind a firewall\r\n==============================================================\r\n\r\n.. code-block:: bash\r\n\r\n ssh -L :: @\r\n\r\n ssh -L 31337:remote.foxhop.net:5900 user@foxhop.net\r\n\r\n ssh -L 31338:remote2.foxhop.net:5900 user@foxhop.net\r\n\r\nThen open vnc and point to 127.0.0.1:31338 or 127.0.0.1:31337\r\n\r\nTunnel DNS requests in firefox\r\n===================================\r\n\r\nabout:config\r\n\r\nnetwork.proxy.socks_remote_dns user set boolean true\r\n\r\n\r\nRemote tunnel a service\r\n=========================\r\n\r\nIn this scenario we are running a development web server (port 8888) on our workstation (joe) from our home network.\r\nWe would like to grant access to this development web server to people on the work network. We have ssh access\r\nto a host (mary) on the work network.\r\n\r\n#. We must enable GatewayPorts in mary:/etc/ssh/sshd_config to allow binding to 0.0.0.0 instead of 127.0.0.1:\r\n\r\n .. code-block:: config\r\n\r\n # Allow this host to bind forwarded ports to 0.0.0.0 instead of 127.0.0.1\r\n # Service will appear to run on this host, but will get forwarded over tunnel \r\n GatewayPorts yes\r\n\r\n#. We create a remote port forwarding tunnel from joe to mary:\r\n\r\n .. code-block:: bash\r\n \r\n user@joe:~$ ssh -g -R 8888:127.0.0.1:8888 user@mary\r\n\r\n#. When the tunnel opens, verify that mary is binding/listening to 0.0.0.0:8888:\r\n\r\n .. code-block:: bash\r\n\r\n user@mary:~$ sudo netstat -nap | grep 8888\r\n tcp 0 0 0.0.0.0:8888 0.0.0.0:* LISTEN 17921/0 \r\n tcp6 0 0 :::8888 :::* LISTEN 17921/0 \r\n \r\n**Now people at work can access the home workstation web server running on joe by connecting to \\http://mary:8888 !**", "source_format": "rst", "revision_number": 22, "created": 1373379019000}, {"id": "f1de19e7-2f95-11f1-ba3c-e86a64d24d78", "node_id": "f1dce8e3-2f95-11f1-b249-e86a64d24d78", "user_id": "edc3f576-2f95-11f1-900f-e86a64d24d78", "author": "foxhop", "data": "SSH Tunnel for HTTP Traffic\r\n==============================\r\n\r\n**Are You stuck behind a firewall?**\r\n\r\n Does your school, library, work, or parents control where you surf and what ports you have open? Do you surf on such public domains and need more privacy? Are you sick of failing proxies? If you answered 'Y' to any of these questions then this tutorial is for you.\r\n\r\n**My Story** \r\n\r\n My place of employment has a firewall and it blocks nearly all outbound protocols and many great sites. (such as foxhop.net, icodeviruses.com, or youtube.com). I needed a way to get around the blocks and not get caught.\r\n\r\n\r\n\r\n.. contents:: Sections \r\n\r\nCommon Questions\r\n-------------------\r\n**What is the best way to get around a firewall?** \r\n \r\n Create an SSH tunnel from the work network to your home network.\r\n\r\n**My network administrator is smart, will I get caught?**\r\n \r\n No, you will most likely not get caught. All the firewall sees is a connection to a resource on the internet. When you browse the web using the tunnel all traffic is encrypted. If a network administrator captured packets he would only get garbage data. An SSH tunnel is basically a VPN between two computers or networks. 1337\t\r\n\r\n**Can a network admin stop a person or computer from tunneling?**\r\n \r\n The Admin will typically not know about the tunnel. From his view a tiny connection is being placed and is normally overlooked. The admin does have the ability to block the default SSH port 22. You can build your tunnel over any port.\r\n\r\nArticle Scope\r\n-------------------\r\n\r\n.. _Putty.exe: http://www.chiark.greenend.org.uk/~sgtatham/putty/download.html\r\n.. _Firefox: http://portableapps.com/apps/internet/firefox_portable\r\n\r\nWe will discuss the steps of building an SSH Tunnel for HTTP traffic between two computers on different networks. This guide will cover both windows and linux localhosts.\r\n\r\nThroughout this guide I will use the following terms, here are the definitions:\r\n\r\n*localhost*\r\n The computer at work or school.\r\n*remotehost*\r\n The computer or server that is offsite, which has the SSH server running.\r\n\r\n**What you need ...**\r\n\r\n#. Credentials to a remotehost running an SSH server. (openssh-server)\r\n#. A localhost computer crippled by a pesky network firewall.\r\n#. An SSH client, For windows get Putty.exe_\r\n#. Firefox_ ( Portable is best )\r\n\r\n**Why is this the best method?**\r\n\r\n#. Most of the configuration is done from the localhost (while at school or work).\r\n#. You don't need admin rights to run Putty.exe_, just place it on a USB drive.\r\n#. You don't need admin rights to run Firefox_ Portable, just place it on a USB drive.\r\n#. No changes need to be made on the remotehost ssh server.\r\n\r\n\r\nSSH Tunnel created from a Windows localhost\r\n-----------------------------------------------\r\n\r\nFollow this guide if your localhost (school or work) computer is Windows based.\r\n\r\nConfigure the SSH Server\r\n~~~~~~~~~~~~~~~~~~~~~~~~~~~~~\r\n\r\nThe remotehost SSH server doesn't need to be configured. \r\n\r\nJust be sure its installed and running and that you have credentials to login. It just needs to be installed and running and you just need credentials.\r\n\r\nTo install openSSH-server on Debian or Ubuntu linux type:\r\n\r\n.. code-block:: apache\r\n\r\n sudo apt-get install ssh\r\n \r\nWhen I'm at work, I establish an SSH Tunnel to my remotehost webserver at home. \r\n\r\nKeep in mind that this doesn't have to be your server, you just need credentials for SSH. \r\n\r\n\r\nConfigure the SSH Client\r\n~~~~~~~~~~~~~~~~~~~~~~~~~~~\r\n#. Download Putty.exe_ if you haven't already, you should follow along.\r\n\r\n#. Double click Putty.exe_.\r\n\r\n .. image:: http://engineer.siue.edu/puttyConnectScreen.gif\r\n\r\n#. The 'Host Name (or IP address)' box should point to the SSH enabled remoteserver. \r\n\r\n#. Toggle the SSH radio button to set the port to 22. (The native SSH port). \r\n\r\n#. Type a name into the 'Saved Sessions' box to save all the settings we toggle.\r\n\r\n#. Click the save button.\r\n\r\n#. There is a list of categories to the left of the putty window.\r\n\r\n#. Navigate to: ( Connection > SSH > Tunnel )\r\n\r\n#. You should be at a menu that is labeled 'Options controlling SSH port forwarding'.\r\n \r\n#. Click the 'Dynamic' radio button. \r\n\r\n#. Leave 'Destination' text box blank.\r\n \r\n#. Type '7070' into the 'Source port' text box.\r\n\r\n#. Click the 'Add' button.\r\n\r\n#. Save your configuration by going back to the 'Session' category, selecting your saved session, and pressing the 'save' button.\r\n\r\n#. Double-click your saved session.\r\n\r\n#. A black terminal window should appear.\r\n\r\n#. You will be prompted for a username and password. \r\n\r\n#. You should be greeted by the server if successful. Leave the putty window open.\r\n\r\n#. `Configure Firefox... <#configure-firefox-to-use-the-ssh-tunnel>`_\r\n\r\n\r\nSSH Tunnel created from a Linux localhost\r\n------------------------------------------------\r\n\r\nFollow this guide if your localhost (work or school) computer is Linux.\r\n\r\nCreate the tunnel\r\n~~~~~~~~~~~~~~~~~~~~~~\r\n\r\nOpen a terminal or console window, and enter the following command:\r\n\r\n.. code-block:: bash\r\n\r\n ssh -D 7070 user@remotehost_ip\r\n\r\nYou will be prompted for credentials on the remotehost. \r\n\r\nAll you need to do is login to establish the tunnel.\r\n\r\n\r\n\r\nConfigure Firefox to use the SSH Tunnel\r\n------------------------------------------\r\n\r\nSetup Socks 5 proxy.\r\n\r\n#. Open Firefox_.\r\n\r\n#. Click **Edit** -> **Preferences**\r\n\r\n#. Click the **Advanced** and **Network** tabs.\r\n\r\n#. Click the **Settings...** button.\r\n\r\n#. Click the **Manual Proxy Configuration** radio button\r\n\r\n#. In **Socks Host** type *localhost*. In port type *7070*.\r\n\r\n .. image:: /attachment/ff-settings.jpg\r\n :align: left \r\n\r\nYou should now be able to browse the Internet using your remote connection. All data will be passed through the remote hosts internet connection. All traffic will be encrypted between the localhost and the remotehost.\r\n\r\n\r\nTunnel to multiple vnc hosts behind a firewall\r\n==============================================================\r\n\r\n.. code-block:: bash\r\n\r\n ssh -L :: @\r\n\r\n ssh -L 31337:remote.foxhop.net:5900 user@foxhop.net\r\n\r\n ssh -L 31338:remote2.foxhop.net:5900 user@foxhop.net\r\n\r\nThen open vnc and point to 127.0.0.1:31338 or 127.0.0.1:31337\r\n\r\nTunnel DNS requests in firefox\r\n===================================\r\n\r\nabout:config\r\n\r\nnetwork.proxy.socks_remote_dns user set boolean true\r\n\r\n\r\nRemote tunnel a service\r\n=========================\r\n\r\nIn this scenario we are running a development web server (port 8888) on our workstation (joe) from our home network.\r\nWe would like to grant access to this development web server to people on the work network. We have ssh access\r\nto a host (mary) on the work network.\r\n\r\n#. We must enable GatewayPorts in mary:/etc/ssh/sshd_config to allow binding to 0.0.0.0 instead of 127.0.0.1:\r\n\r\n .. code-block:: config\r\n\r\n # Allow this host to bind forwarded ports to 0.0.0.0 instead of 127.0.0.1\r\n # Service will appear to run on this host, but will get forwarded over tunnel \r\n GatewayPorts yes\r\n\r\n#. We create a remote port forwarding tunnel from joe to mary:\r\n\r\n .. code-block:: bash\r\n \r\n user@joe:~$ ssh -g -R 8888:127.0.0.1:8888 user@mary\r\n\r\n#. When the tunnel opens, verify that mary is binding/listening to 0.0.0.0:8888:\r\n\r\n .. code-block:: bash\r\n\r\n user@mary:~$ sudo netstat -nap | grep 8888\r\n tcp 0 0 0.0.0.0:8888 0.0.0.0:* LISTEN 17921/0 \r\n tcp6 0 0 :::8888 :::* LISTEN 17921/0 \r\n \r\n**Now people at work can access the home workstation web server running on joe by connecting to \\http://mary:8888 !**", "source_format": "rst", "revision_number": 21, "created": 1373378591000}, {"id": "f1de15bc-2f95-11f1-add6-e86a64d24d78", "node_id": "f1dce8e3-2f95-11f1-b249-e86a64d24d78", "user_id": "edc3f576-2f95-11f1-900f-e86a64d24d78", "author": "foxhop", "data": "SSH Tunnel for HTTP Traffic\r\n==============================\r\n\r\n**Are You stuck behind a firewall?**\r\n\r\n Does your school, library, work, or parents control where you surf and what ports you have open? Do you surf on such public domains and need more privacy? Are you sick of failing proxies? If you answered 'Y' to any of these questions then this tutorial is for you.\r\n\r\n**My Story** \r\n\r\n My place of employment has a firewall and it blocks nearly all outbound protocols and many great sites. (such as foxhop.net, icodeviruses.com, or youtube.com). I needed a way to get around the blocks and not get caught.\r\n\r\n\r\n\r\n.. contents:: Sections \r\n\r\nCommon Questions\r\n-------------------\r\n**What is the best way to get around a firewall?** \r\n \r\n Create an SSH tunnel from the work network to your home network.\r\n\r\n**My network administrator is smart, will I get caught?**\r\n \r\n No, you will most likely not get caught. All the firewall sees is a connection to a resource on the internet. When you browse the web using the tunnel all traffic is encrypted. If a network administrator captured packets he would only get garbage data. An SSH tunnel is basically a VPN between two computers or networks. 1337\t\r\n\r\n**Can a network admin stop a person or computer from tunneling?**\r\n \r\n The Admin will typically not know about the tunnel. From his view a tiny connection is being placed and is normally overlooked. The admin does have the ability to block the default SSH port 22. You can build your tunnel over any port.\r\n\r\nArticle Scope\r\n-------------------\r\n\r\n.. _Putty.exe: http://www.chiark.greenend.org.uk/~sgtatham/putty/download.html\r\n.. _Firefox: http://portableapps.com/apps/internet/firefox_portable\r\n\r\nWe will discuss the steps of building an SSH Tunnel for HTTP traffic between two computers on different networks. This guide will cover both windows and linux localhosts.\r\n\r\nThroughout this guide I will use the following terms, here are the definitions:\r\n\r\n*localhost*\r\n The computer at work or school.\r\n*remotehost*\r\n The computer or server that is offsite, which has the SSH server running.\r\n\r\n**What you need ...**\r\n\r\n#. Credentials to a remotehost running an SSH server. (openssh-server)\r\n#. A localhost computer crippled by a pesky network firewall.\r\n#. An SSH client, For windows get Putty.exe_\r\n#. Firefox_ ( Portable is best )\r\n\r\n**Why is this the best method?**\r\n\r\n#. Most of the configuration is done from the localhost (while at school or work).\r\n#. You don't need admin rights to run Putty.exe_, just place it on a USB drive.\r\n#. You don't need admin rights to run Firefox_ Portable, just place it on a USB drive.\r\n#. No changes need to be made on the remotehost ssh server.\r\n\r\n\r\nSSH Tunnel created from a Windows localhost\r\n-----------------------------------------------\r\n\r\nFollow this guide if your localhost (school or work) computer is Windows based.\r\n\r\nConfigure the SSH Server\r\n~~~~~~~~~~~~~~~~~~~~~~~~~~~~~\r\n\r\nThe remotehost SSH server doesn't need to be configured. \r\n\r\nJust be sure its installed and running and that you have credentials to login. It just needs to be installed and running and you just need credentials.\r\n\r\nTo install openSSH-server on Debian or Ubuntu linux type:\r\n\r\n.. code-block:: apache\r\n\r\n sudo apt-get install ssh\r\n \r\nWhen I'm at work, I establish an SSH Tunnel to my remotehost webserver at home. \r\n\r\nKeep in mind that this doesn't have to be your server, you just need credentials for SSH. \r\n\r\n\r\nConfigure the SSH Client\r\n~~~~~~~~~~~~~~~~~~~~~~~~~~~\r\n#. Download Putty.exe_ if you haven't already, you should follow along.\r\n\r\n#. Double click Putty.exe_.\r\n\r\n .. image:: http://engineer.siue.edu/puttyConnectScreen.gif\r\n\r\n#. The 'Host Name (or IP address)' box should point to the SSH enabled remoteserver. \r\n\r\n#. Toggle the SSH radio button to set the port to 22. (The native SSH port). \r\n\r\n#. Type a name into the 'Saved Sessions' box to save all the settings we toggle.\r\n\r\n#. Click the save button.\r\n\r\n#. There is a list of categories to the left of the putty window.\r\n\r\n#. Navigate to: ( Connection > SSH > Tunnel )\r\n\r\n#. You should be at a menu that is labeled 'Options controlling SSH port forwarding'.\r\n \r\n#. Click the 'Dynamic' radio button. \r\n\r\n#. Leave 'Destination' text box blank.\r\n \r\n#. Type '7070' into the 'Source port' text box.\r\n\r\n#. Click the 'Add' button.\r\n\r\n#. Save your configuration by going back to the 'Session' category, selecting your saved session, and pressing the 'save' button.\r\n\r\n#. Double-click your saved session.\r\n\r\n#. A black terminal window should appear.\r\n\r\n#. You will be prompted for a username and password. \r\n\r\n#. You should be greeted by the server if successful. Leave the putty window open.\r\n\r\n#. `Configure Firefox... <#configure-firefox-to-use-the-ssh-tunnel>`_\r\n\r\n\r\nSSH Tunnel created from a Linux localhost\r\n------------------------------------------------\r\n\r\nFollow this guide if your localhost (work or school) computer is Linux.\r\n\r\nCreate the tunnel\r\n~~~~~~~~~~~~~~~~~~~~~~\r\n\r\nOpen a terminal or console window, and enter the following command:\r\n\r\n.. code-block:: bash\r\n\r\n ssh -D 7070 user@remotehost_ip\r\n\r\nYou will be prompted for credentials on the remotehost. \r\n\r\nAll you need to do is login to establish the tunnel.\r\n\r\n\r\n\r\nConfigure Firefox to use the SSH Tunnel\r\n------------------------------------------\r\n\r\nSetup Socks 5 proxy.\r\n\r\n#. Open Firefox_.\r\n\r\n#. Click **Edit** -> **Preferences**\r\n\r\n#. Click the **Advanced** and **Network** tabs.\r\n\r\n#. Click the **Settings...** button.\r\n\r\n#. Click the **Manual Proxy Configuration** radio button\r\n\r\n#. In **Socks Host** type *localhost*. In port type *7070*.\r\n\r\n .. image:: /attachment/ff-settings.jpg\r\n :align: left \r\n\r\nYou should now be able to browse the Internet using your remote connection. All data will be passed through the remote hosts internet connection. All traffic will be encrypted between the localhost and the remotehost.\r\n\r\n\r\nTunnel to multiple vnc hosts behind a firewall\r\n==============================================================\r\n\r\n.. code-block:: bash\r\n\r\n ssh -L :: @\r\n\r\n ssh -L 31337:remote.foxhop.net:5900 user@foxhop.net\r\n\r\n ssh -L 31338:remote2.foxhop.net:5900 user@foxhop.net\r\n\r\nThen open vnc and point to 127.0.0.1:31338 or 127.0.0.1:31337\r\n\r\nTunnel DNS requests in firefox\r\n===================================\r\n\r\nabout:config\r\n\r\nnetwork.proxy.socks_remote_dns user set boolean true\r\n\r\n\r\nRemote tunnel a service\r\n=========================\r\n\r\nIn this scenario we are running a development web server (port 8888) on our workstation (joe) from our home network.\r\nWe would like to grant access to this development web server to people on the work network. We have ssh access\r\nto a host (mary) on the work network.\r\n\r\n#. We must enable GatewayPorts in mary:/etc/ssh/sshd_config to allow binding to 0.0.0.0 instead of 127.0.0.1:\r\n\r\n .. code-block:: config\r\n\r\n # Allow this host to bind forwarded ports to 0.0.0.0 instead of 127.0.0.1\r\n # Service will appear to run on this host, but will get forwarded over tunnel \r\n GatewayPorts yes\r\n\r\n#. We create a remote port forwarding tunnel from joe to mary:\r\n\r\n .. code-block:: bash\r\n \r\n user@joe:~$ ssh -g -R 8888:127.0.0.1:8888 user@mary\r\n\r\n#. When the tunnel opens, verify that mary is binding/listneing to 0.0.0.0:8888:\r\n\r\n .. code-block:: bash\r\n\r\n user@mary:~$ sudo netstat -nap | grep 8888\r\n tcp 0 0 0.0.0.0:8888 0.0.0.0:* LISTEN 17921/0 \r\n tcp6 0 0 :::8888 :::* LISTEN 17921/0 \r\n \r\n**Now people at work can access the home workstation web server running on joe by connecting to \\http://mary:8888 !**", "source_format": "rst", "revision_number": 20, "created": 1373378426000}, {"id": "f1de1118-2f95-11f1-b2be-e86a64d24d78", "node_id": "f1dce8e3-2f95-11f1-b249-e86a64d24d78", "user_id": "edc3f576-2f95-11f1-900f-e86a64d24d78", "author": "foxhop", "data": "SSH Tunnel for HTTP Traffic\r\n==============================\r\n\r\n**Are You stuck behind a firewall?**\r\n\r\n Does your school, library, work, or parents control where you surf and what ports you have open? Do you surf on such public domains and need more privacy? Are you sick of failing proxies? If you answered 'Y' to any of these questions then this tutorial is for you.\r\n\r\n**My Story** \r\n\r\n My place of employment has a firewall and it blocks nearly all outbound protocols and many great sites. (such as foxhop.net, icodeviruses.com, or youtube.com). I needed a way to get around the blocks and not get caught.\r\n\r\n\r\n\r\n.. contents:: Sections \r\n\r\nCommon Questions\r\n-------------------\r\n**What is the best way to get around a firewall?** \r\n \r\n Create an SSH tunnel from the work network to your home network.\r\n\r\n**My network administrator is smart, will I get caught?**\r\n \r\n No, you will most likely not get caught. All the firewall sees is a connection to a resource on the internet. When you browse the web using the tunnel all traffic is encrypted. If a network administrator captured packets he would only get garbage data. An SSH tunnel is basically a VPN between two computers or networks. 1337\t\r\n\r\n**Can a network admin stop a person or computer from tunneling?**\r\n \r\n The Admin will typically not know about the tunnel. From his view a tiny connection is being placed and is normally overlooked. The admin does have the ability to block the default SSH port 22. You can build your tunnel over any port.\r\n\r\nArticle Scope\r\n-------------------\r\n\r\n.. _Putty.exe: http://www.chiark.greenend.org.uk/~sgtatham/putty/download.html\r\n.. _Firefox: http://portableapps.com/apps/internet/firefox_portable\r\n\r\nWe will discuss the steps of building an SSH Tunnel for HTTP traffic between two computers on different networks. This guide will cover both windows and linux localhosts.\r\n\r\nThroughout this guide I will use the following terms, here are the definitions:\r\n\r\n*localhost*\r\n The computer at work or school.\r\n*remotehost*\r\n The computer or server that is offsite, which has the SSH server running.\r\n\r\n**What you need ...**\r\n\r\n#. Credentials to a remotehost running an SSH server. (openssh-server)\r\n#. A localhost computer crippled by a pesky network firewall.\r\n#. An SSH client, For windows get Putty.exe_\r\n#. Firefox_ ( Portable is best )\r\n\r\n**Why is this the best method?**\r\n\r\n#. Most of the configuration is done from the localhost (while at school or work).\r\n#. You don't need admin rights to run Putty.exe_, just place it on a USB drive.\r\n#. You don't need admin rights to run Firefox_ Portable, just place it on a USB drive.\r\n#. No changes need to be made on the remotehost ssh server.\r\n\r\n\r\nSSH Tunnel created from a Windows localhost\r\n-----------------------------------------------\r\n\r\nFollow this guide if your localhost (school or work) computer is Windows based.\r\n\r\nConfigure the SSH Server\r\n~~~~~~~~~~~~~~~~~~~~~~~~~~~~~\r\n\r\nThe remotehost SSH server doesn't need to be configured. \r\n\r\nJust be sure its installed and running and that you have credentials to login. It just needs to be installed and running and you just need credentials.\r\n\r\nTo install openSSH-server on Debian or Ubuntu linux type:\r\n\r\n.. code-block:: apache\r\n\r\n sudo apt-get install ssh\r\n \r\nWhen I'm at work, I establish an SSH Tunnel to my remotehost webserver at home. \r\n\r\nKeep in mind that this doesn't have to be your server, you just need credentials for SSH. \r\n\r\n\r\nConfigure the SSH Client\r\n~~~~~~~~~~~~~~~~~~~~~~~~~~~\r\n#. Download Putty.exe_ if you haven't already, you should follow along.\r\n\r\n#. Double click Putty.exe_.\r\n\r\n .. image:: http://engineer.siue.edu/puttyConnectScreen.gif\r\n\r\n#. The 'Host Name (or IP address)' box should point to the SSH enabled remoteserver. \r\n\r\n#. Toggle the SSH radio button to set the port to 22. (The native SSH port). \r\n\r\n#. Type a name into the 'Saved Sessions' box to save all the settings we toggle.\r\n\r\n#. Click the save button.\r\n\r\n#. There is a list of categories to the left of the putty window.\r\n\r\n#. Navigate to: ( Connection > SSH > Tunnel )\r\n\r\n#. You should be at a menu that is labeled 'Options controlling SSH port forwarding'.\r\n \r\n#. Click the 'Dynamic' radio button. \r\n\r\n#. Leave 'Destination' text box blank.\r\n \r\n#. Type '7070' into the 'Source port' text box.\r\n\r\n#. Click the 'Add' button.\r\n\r\n#. Save your configuration by going back to the 'Session' category, selecting your saved session, and pressing the 'save' button.\r\n\r\n#. Double-click your saved session.\r\n\r\n#. A black terminal window should appear.\r\n\r\n#. You will be prompted for a username and password. \r\n\r\n#. You should be greeted by the server if successful. Leave the putty window open.\r\n\r\n#. `Configure Firefox... <#configure-firefox-to-use-the-ssh-tunnel>`_\r\n\r\n\r\nSSH Tunnel created from a Linux localhost\r\n------------------------------------------------\r\n\r\nFollow this guide if your localhost (work or school) computer is Linux.\r\n\r\nCreate the tunnel\r\n~~~~~~~~~~~~~~~~~~~~~~\r\n\r\nOpen a terminal or console window, and enter the following command:\r\n\r\n.. code-block:: bash\r\n\r\n ssh -D 7070 user@remotehost_ip\r\n\r\nYou will be prompted for credentials on the remotehost. \r\n\r\nAll you need to do is login to establish the tunnel.\r\n\r\n\r\n\r\nConfigure Firefox to use the SSH Tunnel\r\n------------------------------------------\r\n\r\nSetup Socks 5 proxy.\r\n\r\n#. Open Firefox_.\r\n\r\n#. Click **Edit** -> **Preferences**\r\n\r\n#. Click the **Advanced** and **Network** tabs.\r\n\r\n#. Click the **Settings...** button.\r\n\r\n#. Click the **Manual Proxy Configuration** radio button\r\n\r\n#. In **Socks Host** type *localhost*. In port type *7070*.\r\n\r\n .. image:: /attachment/ff-settings.jpg\r\n :align: left \r\n\r\nYou should now be able to browse the Internet using your remote connection. All data will be passed through the remote hosts internet connection. All traffic will be encrypted between the localhost and the remotehost.\r\n\r\n\r\nTunnel to multiple vnc hosts behind a firewall\r\n==============================================================\r\n\r\n.. code-block:: bash\r\n\r\n ssh -L :: @\r\n\r\n ssh -L 31337:remote.foxhop.net:5900 user@foxhop.net\r\n\r\n ssh -L 31338:remote2.foxhop.net:5900 user@foxhop.net\r\n\r\nThen open vnc and point to 127.0.0.1:31338 or 127.0.0.1:31337\r\n\r\nTunnel DNS requests in firefox\r\n===================================\r\n\r\nabout:config\r\n\r\nnetwork.proxy.socks_remote_dns user set boolean true\r\n", "source_format": "rst", "revision_number": 19, "created": 1346384601000}, {"id": "f1de0cf4-2f95-11f1-831b-e86a64d24d78", "node_id": "f1dce8e3-2f95-11f1-b249-e86a64d24d78", "user_id": "edc3f576-2f95-11f1-900f-e86a64d24d78", "author": "foxhop", "data": "SSH Tunnel for HTTP Traffic\r\n==============================\r\n\r\n**Are You stuck behind a firewall?**\r\n\r\n Does your school, library, work, or parents control where you surf and what ports you have open? Do you surf on such public domains and need more privacy? Are you sick of failing proxies? If you answered 'Y' to any of these questions then this tutorial is for you.\r\n\r\n**My Story** \r\n\r\n My place of employment has a firewall and it blocks nearly all outbound protocols and many great sites. (such as foxhop.net, icodeviruses.com, or youtube.com). I needed a way to get around the blocks and not get caught.\r\n\r\n\r\n\r\n.. contents:: Sections \r\n\r\nCommon Questions\r\n-------------------\r\n**What is the best way to get around a firewall?** \r\n \r\n Create an SSH tunnel from the work network to your home network.\r\n\r\n**My network administrator is smart, will I get caught?**\r\n \r\n No, you will most likely not get caught. All the firewall sees is a connection to a resource on the internet. When you browse the web using the tunnel all traffic is encrypted. If a network administrator captured packets he would only get garbage data. An SSH tunnel is basically a VPN between two computers or networks. 1337\t\r\n\r\n**Can a network admin stop a person or computer from tunneling?**\r\n \r\n The Admin will typically not know about the tunnel. From his view a tiny connection is being placed and is normally overlooked. The admin does have the ability to block the default SSH port 22. You can build your tunnel over any port.\r\n\r\nArticle Scope\r\n-------------------\r\n\r\n.. _Putty.exe: http://www.chiark.greenend.org.uk/~sgtatham/putty/download.html\r\n.. _Firefox: http://portableapps.com/apps/internet/firefox_portable\r\n\r\nWe will discuss the steps of building an SSH Tunnel for HTTP traffic between two computers on different networks. This guide will cover both windows and linux localhosts.\r\n\r\nThroughout this guide I will use the following terms, here are the definitions:\r\n\r\n*localhost*\r\n The computer at work or school.\r\n*remotehost*\r\n The computer or server that is offsite, which has the SSH server running.\r\n\r\n**What you need ...**\r\n\r\n#. Credentials to a remotehost running an SSH server. (openssh-server)\r\n#. A localhost computer crippled by a pesky network firewall.\r\n#. An SSH client, For windows get Putty.exe_\r\n#. Firefox_ ( Portable is best )\r\n\r\n**Why is this the best method?**\r\n\r\n#. Most of the configuration is done from the localhost (while at school or work).\r\n#. You don't need admin rights to run Putty.exe_, just place it on a USB drive.\r\n#. You don't need admin rights to run Firefox_ Portable, just place it on a USB drive.\r\n#. No changes need to be made on the remotehost ssh server.\r\n\r\n\r\nSSH Tunnel created from a Windows localhost\r\n-----------------------------------------------\r\n\r\nFollow this guide if your localhost (school or work) computer is Windows based.\r\n\r\nConfigure the SSH Server\r\n~~~~~~~~~~~~~~~~~~~~~~~~~~~~~\r\n\r\nThe remotehost SSH server doesn't need to be configured. \r\n\r\nJust be sure its installed and running and that you have credentials to login. It just needs to be installed and running and you just need credentials.\r\n\r\nTo install openSSH-server on Debian or Ubuntu linux type:\r\n\r\n.. code-block:: apache\r\n\r\n sudo apt-get install ssh\r\n \r\nWhen I'm at work, I establish an SSH Tunnel to my remotehost webserver at home. \r\n\r\nKeep in mind that this doesn't have to be your server, you just need credentials for SSH. \r\n\r\n\r\nConfigure the SSH Client\r\n~~~~~~~~~~~~~~~~~~~~~~~~~~~\r\n#. Download Putty.exe_ if you haven't already, you should follow along.\r\n\r\n#. Double click Putty.exe_.\r\n\r\n .. image:: http://engineer.siue.edu/puttyConnectScreen.gif\r\n\r\n#. The 'Host Name (or IP address)' box should point to the SSH enabled remoteserver. \r\n\r\n#. Toggle the SSH radio button to set the port to 22. (The native SSH port). \r\n\r\n#. Type a name into the 'Saved Sessions' box to save all the settings we toggle.\r\n\r\n#. Click the save button.\r\n\r\n#. There is a list of categories to the left of the putty window.\r\n\r\n#. Navigate to: ( Connection > SSH > Tunnel )\r\n\r\n#. You should be at a menu that is labeled 'Options controlling SSH port forwarding'.\r\n \r\n#. Click the 'Dynamic' radio button. \r\n\r\n#. Leave 'Destination' text box blank.\r\n \r\n#. Type '7070' into the 'Source port' text box.\r\n\r\n#. Click the 'Add' button.\r\n\r\n#. Save your configuration by going back to the 'Session' category, selecting your saved session, and pressing the 'save' button.\r\n\r\n#. Double-click your saved session.\r\n\r\n#. A black terminal window should appear.\r\n\r\n#. You will be prompted for a username and password. \r\n\r\n#. You should be greeted by the server if successful. Leave the putty window open.\r\n\r\n#. `Configure Firefox... <#configure-firefox-to-use-the-ssh-tunnel>`_\r\n\r\n\r\nSSH Tunnel created from a Linux localhost\r\n------------------------------------------------\r\n\r\nFollow this guide if your localhost (work or school) computer is Linux.\r\n\r\nCreate the tunnel\r\n~~~~~~~~~~~~~~~~~~~~~~\r\n\r\nOpen a terminal or console window, and enter the following command:\r\n\r\n.. code-block:: bash\r\n\r\n ssh -D 7070 user@remotehost_ip\r\n\r\nYou will be prompted for credentials on the remotehost. \r\n\r\nAll you need to do is login to establish the tunnel.\r\n\r\n\r\n\r\nConfigure Firefox to use the SSH Tunnel\r\n------------------------------------------\r\n\r\nSetup Socks 5 proxy.\r\n\r\n#. Open Firefox_.\r\n\r\n#. Click **Edit** -> **Preferences**\r\n\r\n#. Click the **Advanced** and **Network** tabs.\r\n\r\n#. Click the **Settings...** button.\r\n\r\n#. Click the **Manual Proxy Configuration** radio button\r\n\r\n#. In **Socks Host** type *localhost*. In port type *7070*.\r\n\r\n .. image:: /attachment/ff-settings.jpg\r\n :align: left \r\n\r\nYou should now be able to browse the Internet using your remote connection. All data will be passed through the remote hosts internet connection. All traffic will be encrypted between the localhost and the remotehost.\r\n\r\n\r\nTunnel to multiple vnc hosts behind a firewall\r\n==============================================================\r\n\r\n.. code-block:: bash\r\n\r\n ssh -L :: @\r\n\r\n ssh -L 31337:remote.foxhop.net:5900 user@foxhop.net\r\n\r\n ssh -L 31338:remote2.foxhop.net:5900 user@foxhop.net\r\n\r\nThen open vnc and point to 127.0.0.1:31338 or 127.0.0.1:31337\r\n", "source_format": "rst", "revision_number": 18, "created": 1335478547000}, {"id": "f1de080e-2f95-11f1-940b-e86a64d24d78", "node_id": "f1dce8e3-2f95-11f1-b249-e86a64d24d78", "user_id": "edc3f576-2f95-11f1-900f-e86a64d24d78", "author": "foxhop", "data": "SSH Tunnel for HTTP Traffic\r\n==============================\r\n\r\n**Are You stuck behind a firewall?**\r\n\r\n Does your school, library, work, or parents control where you surf and what ports you have open? Do you surf on such public domains and need more privacy? Are you sick of failing proxies? If you answered 'Y' to any of these questions then this tutorial is for you.\r\n\r\n**My Story** \r\n\r\n My place of employment has a firewall and it blocks nearly all outbound protocol and many great sites. (such as foxhop.net, icodeviruses.com, or youtube.com). I needed a way to get around the blocks and not get caught.\r\n\r\n\r\n\r\n.. contents:: Sections \r\n\r\nCommon Questions\r\n-------------------\r\n**What is the best way to get around a firewall?** \r\n \r\n Create an SSH tunnel from the work network to your home network.\r\n\r\n**My network administrator is smart, will I get caught?**\r\n \r\n No, you will most likely not get caught. All the firewall sees is a connection to a resource on the internet. When you browse the web using the tunnel all traffic is encrypted. If a network administrator captured packets he would only get garbage data. An SSH tunnel is basically a VPN between two computers or networks. 1337\t\r\n\r\n**Can a network admin stop a person or computer from tunneling?**\r\n \r\n The Admin will typically not know about the tunnel. From his view a tiny connection is being placed and is normally overlooked. The admin does have the ability to block the default SSH port 22. You can build your tunnel over any port.\r\n\r\nArticle Scope\r\n-------------------\r\n\r\n.. _Putty.exe: http://www.chiark.greenend.org.uk/~sgtatham/putty/download.html\r\n.. _Firefox: http://portableapps.com/apps/internet/firefox_portable\r\n\r\nWe will discuss the steps of building an SSH Tunnel for HTTP traffic between two computers on different networks. This guide will cover both windows and linux localhosts.\r\n\r\nThroughout this guide I will use the following terms, here are the definitions:\r\n\r\n*localhost*\r\n The computer at work or school.\r\n*remotehost*\r\n The computer or server that is offsite, which has the SSH server running.\r\n\r\n**What you need ...**\r\n\r\n#. Credentials to a remotehost running an SSH server. (openssh-server)\r\n#. A localhost computer crippled by a pesky network firewall.\r\n#. An SSH client, For windows get Putty.exe_\r\n#. Firefox_ ( Portable is best )\r\n\r\n**Why is this the best method?**\r\n\r\n#. Most of the configuration is done from the localhost (while at school or work).\r\n#. You don't need admin rights to run Putty.exe_, just place it on a USB drive.\r\n#. You don't need admin rights to run Firefox_ Portable, just place it on a USB drive.\r\n#. No changes need to be made on the remotehost ssh server.\r\n\r\n\r\nSSH Tunnel created from a Windows localhost\r\n-----------------------------------------------\r\n\r\nFollow this guide if your localhost (school or work) computer is Windows based.\r\n\r\nConfigure the SSH Server\r\n~~~~~~~~~~~~~~~~~~~~~~~~~~~~~\r\n\r\nThe remotehost SSH server doesn't need to be configured. \r\n\r\nJust be sure its installed and running and that you have credentials to login. It just needs to be installed and running and you just need credentials.\r\n\r\nTo install openSSH-server on Debian or Ubuntu linux type:\r\n\r\n.. code-block:: apache\r\n\r\n sudo apt-get install ssh\r\n \r\nWhen I'm at work, I establish an SSH Tunnel to my remotehost webserver at home. \r\n\r\nKeep in mind that this doesn't have to be your server, you just need credentials for SSH. \r\n\r\n\r\nConfigure the SSH Client\r\n~~~~~~~~~~~~~~~~~~~~~~~~~~~\r\n#. Download Putty.exe_ if you haven't already, you should follow along.\r\n\r\n#. Double click Putty.exe_.\r\n\r\n .. image:: http://engineer.siue.edu/puttyConnectScreen.gif\r\n\r\n#. The 'Host Name (or IP address)' box should point to the SSH enabled remoteserver. \r\n\r\n#. Toggle the SSH radio button to set the port to 22. (The native SSH port). \r\n\r\n#. Type a name into the 'Saved Sessions' box to save all the settings we toggle.\r\n\r\n#. Click the save button.\r\n\r\n#. There is a list of categories to the left of the putty window.\r\n\r\n#. Navigate to: ( Connection > SSH > Tunnel )\r\n\r\n#. You should be at a menu that is labeled 'Options controlling SSH port forwarding'.\r\n \r\n#. Click the 'Dynamic' radio button. \r\n\r\n#. Leave 'Destination' text box blank.\r\n \r\n#. Type '7070' into the 'Source port' text box.\r\n\r\n#. Click the 'Add' button.\r\n\r\n#. Save your configuration by going back to the 'Session' category, selecting your saved session, and pressing the 'save' button.\r\n\r\n#. Double-click your saved session.\r\n\r\n#. A black terminal window should appear.\r\n\r\n#. You will be prompted for a username and password. \r\n\r\n#. You should be greeted by the server if successful. Leave the putty window open.\r\n\r\n#. `Configure Firefox... <#configure-firefox-to-use-the-ssh-tunnel>`_\r\n\r\n\r\nSSH Tunnel created from a Linux localhost\r\n------------------------------------------------\r\n\r\nFollow this guide if your localhost (work or school) computer is Linux.\r\n\r\nCreate the tunnel\r\n~~~~~~~~~~~~~~~~~~~~~~\r\n\r\nOpen a terminal or console window, and enter the following command:\r\n\r\n.. code-block:: bash\r\n\r\n ssh -D 7070 user@remotehost_ip\r\n\r\nYou will be prompted for credentials on the remotehost. \r\n\r\nAll you need to do is login to establish the tunnel.\r\n\r\n\r\n\r\nConfigure Firefox to use the SSH Tunnel\r\n------------------------------------------\r\n\r\nSetup Socks 5 proxy.\r\n\r\n#. Open Firefox_.\r\n\r\n#. Click **Edit** -> **Preferences**\r\n\r\n#. Click the **Advanced** and **Network** tabs.\r\n\r\n#. Click the **Settings...** button.\r\n\r\n#. Click the **Manual Proxy Configuration** radio button\r\n\r\n#. In **Socks Host** type *localhost*. In port type *7070*.\r\n\r\n .. image:: /attachment/ff-settings.jpg\r\n :align: left \r\n\r\nYou should now be able to browse the Internet using your remote connection. All data will be passed through the remote hosts internet connection. All traffic will be encrypted between the localhost and the remotehost.\r\n\r\n\r\nTunnel to multiple vnc hosts behind a firewall\r\n==============================================================\r\n\r\n.. code-block:: bash\r\n\r\n ssh -L :: @\r\n\r\n ssh -L 31337:remote.foxhop.net:5900 user@foxhop.net\r\n\r\n ssh -L 31338:remote2.foxhop.net:5900 user@foxhop.net\r\n\r\nThen open vnc and point to 127.0.0.1:31338 or 127.0.0.1:31337\r\n", "source_format": "rst", "revision_number": 17, "created": 1335478510000}, {"id": "f1de03f1-2f95-11f1-904e-e86a64d24d78", "node_id": "f1dce8e3-2f95-11f1-b249-e86a64d24d78", "user_id": "edc3f576-2f95-11f1-900f-e86a64d24d78", "author": "foxhop", "data": "SSH Tunnel for HTTP Traffic\r\n==============================\r\n\r\n**Are You stuck behind a firewall?**\r\n\r\n Does your school, library, work, or parents control where you surf and what ports you have open? Do you surf on such public domains and need more privacy? Are you sick of failing proxies? If you answered 'Y' to any of these questions then this tutorial is for you.\r\n\r\n**My Story** \r\n\r\n My place of employment has a bastard firewall and it blocks nearly all ports and many great sites. (such as foxhop.net, icodeviruses.com, or youtube.com). I needed a way to get around the blocks and not get caught.\r\n\r\n\r\n\r\n.. contents:: Sections \r\n\r\nCommon Questions\r\n-------------------\r\n**What is the best way to get around a firewall?** \r\n \r\n Create an SSH tunnel from the work network to your home network.\r\n\r\n**My network administrator is smart, will I get caught?**\r\n \r\n No, you will most likely not get caught. All the firewall sees is a connection to a resource on the internet. When you browse the web using the tunnel all traffic is encrypted. If a network administrator captured packets he would only get garbage data. An SSH tunnel is basically a VPN between two computers or networks. 1337\t\r\n\r\n**Can a network admin stop a person or computer from tunneling?**\r\n \r\n The Admin will typically not know about the tunnel. From his view a tiny connection is being placed and is normally overlooked. The admin does have the ability to block the default SSH port 22. You can build your tunnel over any port.\r\n\r\nArticle Scope\r\n-------------------\r\n\r\n.. _Putty.exe: http://www.chiark.greenend.org.uk/~sgtatham/putty/download.html\r\n.. _Firefox: http://portableapps.com/apps/internet/firefox_portable\r\n\r\nWe will discuss the steps of building an SSH Tunnel for HTTP traffic between two computers on different networks. This guide will cover both windows and linux localhosts.\r\n\r\nThroughout this guide I will use the following terms, here are the definitions:\r\n\r\n*localhost*\r\n The computer at work or school.\r\n*remotehost*\r\n The computer or server that is offsite, which has the SSH server running.\r\n\r\n**What you need ...**\r\n\r\n#. Credentials to a remotehost running an SSH server. (openssh-server)\r\n#. A localhost computer crippled by a pesky network firewall.\r\n#. An SSH client, For windows get Putty.exe_\r\n#. Firefox_ ( Portable is best )\r\n\r\n**Why is this the best method?**\r\n\r\n#. Most of the configuration is done from the localhost (while at school or work).\r\n#. You don't need admin rights to run Putty.exe_, just place it on a USB drive.\r\n#. You don't need admin rights to run Firefox_ Portable, just place it on a USB drive.\r\n#. No changes need to be made on the remotehost ssh server.\r\n\r\n\r\nSSH Tunnel created from a Windows localhost\r\n-----------------------------------------------\r\n\r\nFollow this guide if your localhost (school or work) computer is Windows based.\r\n\r\nConfigure the SSH Server\r\n~~~~~~~~~~~~~~~~~~~~~~~~~~~~~\r\n\r\nThe remotehost SSH server doesn't need to be configured. \r\n\r\nJust be sure its installed and running and that you have credentials to login. It just needs to be installed and running and you just need credentials.\r\n\r\nTo install openSSH-server on Debian or Ubuntu linux type:\r\n\r\n.. code-block:: apache\r\n\r\n sudo apt-get install ssh\r\n \r\nWhen I'm at work, I establish an SSH Tunnel to my remotehost webserver at home. \r\n\r\nKeep in mind that this doesn't have to be your server, you just need credentials for SSH. \r\n\r\n\r\nConfigure the SSH Client\r\n~~~~~~~~~~~~~~~~~~~~~~~~~~~\r\n#. Download Putty.exe_ if you haven't already, you should follow along.\r\n\r\n#. Double click Putty.exe_.\r\n\r\n .. image:: http://engineer.siue.edu/puttyConnectScreen.gif\r\n\r\n#. The 'Host Name (or IP address)' box should point to the SSH enabled remoteserver. \r\n\r\n#. Toggle the SSH radio button to set the port to 22. (The native SSH port). \r\n\r\n#. Type a name into the 'Saved Sessions' box to save all the settings we toggle.\r\n\r\n#. Click the save button.\r\n\r\n#. There is a list of categories to the left of the putty window.\r\n\r\n#. Navigate to: ( Connection > SSH > Tunnel )\r\n\r\n#. You should be at a menu that is labeled 'Options controlling SSH port forwarding'.\r\n \r\n#. Click the 'Dynamic' radio button. \r\n\r\n#. Leave 'Destination' text box blank.\r\n \r\n#. Type '7070' into the 'Source port' text box.\r\n\r\n#. Click the 'Add' button.\r\n\r\n#. Save your configuration by going back to the 'Session' category, selecting your saved session, and pressing the 'save' button.\r\n\r\n#. Double-click your saved session.\r\n\r\n#. A black terminal window should appear.\r\n\r\n#. You will be prompted for a username and password. \r\n\r\n#. You should be greeted by the server if successful. Leave the putty window open.\r\n\r\n#. `Configure Firefox... <#configure-firefox-to-use-the-ssh-tunnel>`_\r\n\r\n\r\nSSH Tunnel created from a Linux localhost\r\n------------------------------------------------\r\n\r\nFollow this guide if your localhost (work or school) computer is Linux.\r\n\r\nCreate the tunnel\r\n~~~~~~~~~~~~~~~~~~~~~~\r\n\r\nOpen a terminal or console window, and enter the following command:\r\n\r\n.. code-block:: bash\r\n\r\n ssh -D 7070 user@remotehost_ip\r\n\r\nYou will be prompted for credentials on the remotehost. \r\n\r\nAll you need to do is login to establish the tunnel.\r\n\r\n\r\n\r\nConfigure Firefox to use the SSH Tunnel\r\n------------------------------------------\r\n\r\nSetup Socks 5 proxy.\r\n\r\n#. Open Firefox_.\r\n\r\n#. Click **Edit** -> **Preferences**\r\n\r\n#. Click the **Advanced** and **Network** tabs.\r\n\r\n#. Click the **Settings...** button.\r\n\r\n#. Click the **Manual Proxy Configuration** radio button\r\n\r\n#. In **Socks Host** type *localhost*. In port type *7070*.\r\n\r\n .. image:: /attachment/ff-settings.jpg\r\n :align: left \r\n\r\nYou should now be able to browse the Internet using your remote connection. All data will be passed through the remote hosts internet connection. All traffic will be encrypted between the localhost and the remotehost.\r\n\r\n\r\nTunnel to multiple vnc hosts behind a firewall\r\n==============================================================\r\n\r\n.. code-block:: bash\r\n\r\n ssh -L :: @\r\n\r\n ssh -L 31337:remote.foxhop.net:5900 user@foxhop.net\r\n\r\n ssh -L 31338:remote2.foxhop.net:5900 user@foxhop.net\r\n\r\nThen open vnc and point to 127.0.0.1:31338 or 127.0.0.1:31337\r\n", "source_format": "rst", "revision_number": 16, "created": 1331132042000}, {"id": "f1ddffd6-2f95-11f1-b4f2-e86a64d24d78", "node_id": "f1dce8e3-2f95-11f1-b249-e86a64d24d78", "user_id": "edc3f576-2f95-11f1-900f-e86a64d24d78", "author": "foxhop", "data": "SSH Tunnel for HTTP Traffic\r\n==============================\r\n\r\n**Are You stuck behind a firewall?**\r\n\r\n Does your school, library, work, or parents control where you surf and what ports you have open? Do you surf on such public domains and need more privacy? Are you sick of failing proxies? If you answered 'Y' to any of these questions then this tutorial is for you.\r\n\r\n**My Story** \r\n\r\n My place of employment has a bastard firewall and it blocks nearly all ports and many great sites. (such as foxhop.net, icodeviruses.com, or youtube.com). I needed a way to get around the blocks and not get caught.\r\n\r\n\r\n\r\n.. contents:: Sections \r\n\r\nCommon Questions\r\n-------------------\r\n**What is the best way to get around a firewall?** \r\n \r\n Create an SSH tunnel from the work network to your home network.\r\n\r\n**My network administrator is smart, will I get caught?**\r\n \r\n No, you will most likely not get caught. All the firewall sees is a connection to a resource on the internet. When you browse the web using the tunnel all traffic is encrypted. If a network administrator captured packets he would only get garbage data. An SSH tunnel is basically a VPN between two computers or networks. 1337\t\r\n\r\n**Can a network admin stop a person or computer from tunneling?**\r\n \r\n The Admin will typically not know about the tunnel. From his view a tiny connection is being placed and is normally overlooked. The admin does have the ability to block the default SSH port 22. You can build your tunnel over any port.\r\n\r\nArticle Scope\r\n-------------------\r\n\r\n.. _Putty.exe: http://www.chiark.greenend.org.uk/~sgtatham/putty/download.html\r\n.. _Firefox: http://portableapps.com/apps/internet/firefox_portable\r\n\r\nWe will discuss the steps of building an SSH Tunnel for HTTP traffic between two computers on different networks. This guide will cover both windows and linux localhosts.\r\n\r\nThroughout this guide I will use the following terms, here are the definitions:\r\n\r\n*localhost*\r\n The computer at work or school.\r\n*remotehost*\r\n The computer or server that is offsite, which has the SSH server running.\r\n\r\n**What you need ...**\r\n\r\n#. Credentials to a remotehost running an SSH server. (openssh-server)\r\n#. A localhost computer crippled by a pesky network firewall.\r\n#. An SSH client, For windows get Putty.exe_\r\n#. Firefox_ ( Portable is best )\r\n\r\n**Why is this the best method?**\r\n\r\n#. Most of the configuration is done from the localhost (while at school or work).\r\n#. You don't need admin rights to run Putty.exe_, just place it on a USB drive.\r\n#. You don't need admin rights to run Firefox_ Portable, just place it on a USB drive.\r\n#. No changes need to be made on the remotehost ssh server.\r\n\r\n\r\nSSH Tunnel created from a Windows localhost\r\n-----------------------------------------------\r\n\r\nFollow this guide if your localhost (school or work) computer is Windows based.\r\n\r\nConfigure the SSH Server\r\n~~~~~~~~~~~~~~~~~~~~~~~~~~~~~\r\n\r\nThe remotehost SSH server doesn't need to be configured. \r\n\r\nJust be sure its installed and running and that you have credentials to login. It just needs to be installed and running and you just need credentials.\r\n\r\nTo install openSSH-server on Debian or Ubuntu linux type:\r\n\r\n.. code-block:: apache\r\n\r\n sudo apt-get install ssh\r\n \r\nWhen I'm at work, I establish an SSH Tunnel to my remotehost webserver at home. \r\n\r\nKeep in mind that this doesn't have to be your server, you just need credentials for SSH. \r\n\r\n\r\nConfigure the SSH Client\r\n~~~~~~~~~~~~~~~~~~~~~~~~~~~\r\n#. Download Putty.exe_ if you haven't already, you should follow along.\r\n\r\n#. Double click Putty.exe_.\r\n\r\n .. image:: http://engineer.siue.edu/puttyConnectScreen.gif\r\n\r\n#. The 'Host Name (or IP address)' box should point to the SSH enabled remoteserver. \r\n\r\n#. Toggle the SSH radio button to set the port to 22. (The native SSH port). \r\n\r\n#. Type a name into the 'Saved Sessions' box to save all the settings we toggle.\r\n\r\n#. Click the save button.\r\n\r\n#. There is a list of categories to the left of the putty window.\r\n\r\n#. Navigate to: ( Connection > SSH > Tunnel )\r\n\r\n#. You should be at a menu that is labeled 'Options controlling SSH port forwarding'.\r\n \r\n#. Click the 'Dynamic' radio button. \r\n\r\n#. Leave 'Destination' text box blank.\r\n \r\n#. Type '7070' into the 'Source port' text box.\r\n\r\n#. Click the 'Add' button.\r\n\r\n#. Save your configuration by going back to the 'Session' category, selecting your saved session, and pressing the 'save' button.\r\n\r\n#. Double-click your saved session.\r\n\r\n#. A black terminal window should appear.\r\n\r\n#. You will be prompted for a username and password. \r\n\r\n#. You should be greeted by the server if successful. Leave the putty window open.\r\n\r\n#. `Configure Firefox... <#configure-firefox-to-use-the-ssh-tunnel>`_\r\n\r\n\r\nSSH Tunnel created from a Linux localhost\r\n------------------------------------------------\r\n\r\nFollow this guide if your localhost (work or school) computer is Linux.\r\n\r\nCreate the tunnel\r\n~~~~~~~~~~~~~~~~~~~~~~\r\n\r\nOpen a terminal or console window, and enter the following command:\r\n\r\n.. code-block:: bash\r\n\r\n ssh -ND 7070 user@remotehost_ip\r\n\r\nYou will be prompted for credentials on the remotehost. \r\n\r\nAll you need to do is login to establish the tunnel.\r\n\r\n\r\n\r\nConfigure Firefox to use the SSH Tunnel\r\n------------------------------------------\r\n\r\nSetup Socks 5 proxy.\r\n\r\n#. Open Firefox_.\r\n\r\n#. Click **Edit** -> **Preferences**\r\n\r\n#. Click the **Advanced** and **Network** tabs.\r\n\r\n#. Click the **Settings...** button.\r\n\r\n#. Click the **Manual Proxy Configuration** radio button\r\n\r\n#. In **Socks Host** type *localhost*. In port type *7070*.\r\n\r\n .. image:: /attachment/ff-settings.jpg\r\n :align: left \r\n\r\nYou should now be able to browse the Internet using your remote connection. All data will be passed through the remote hosts internet connection. All traffic will be encrypted between the localhost and the remotehost.\r\n\r\n\r\nTunnel to multiple vnc hosts behind a firewall\r\n==============================================================\r\n\r\n.. code-block:: bash\r\n\r\n ssh -L :: @\r\n\r\n ssh -L 31337:remote.foxhop.net:5900 user@foxhop.net\r\n\r\n ssh -L 31338:remote2.foxhop.net:5900 user@foxhop.net\r\n\r\nThen open vnc and point to 127.0.0.1:31338 or 127.0.0.1:31337\r\n", "source_format": "rst", "revision_number": 15, "created": 1289339965000}, {"id": "f1ddfc31-2f95-11f1-b694-e86a64d24d78", "node_id": "f1dce8e3-2f95-11f1-b249-e86a64d24d78", "user_id": null, "author": null, "data": "rymMyO ccfdfrkqyubk, [url=http://cgtazrwhtfgg.com/]cgtazrwhtfgg[/url], [link=http://cxrmntdtgsvz.com/]cxrmntdtgsvz[/link], http://rwlmlnhtyvae.com/", "source_format": "rst", "revision_number": 14, "created": 1289323063000}, {"id": "f1ddf89b-2f95-11f1-a2df-e86a64d24d78", "node_id": "f1dce8e3-2f95-11f1-b249-e86a64d24d78", "user_id": null, "author": null, "data": "rymMyO ccfdfrkqyubk, [url=http://cgtazrwhtfgg.com/]cgtazrwhtfgg[/url], [link=http://cxrmntdtgsvz.com/]cxrmntdtgsvz[/link], http://rwlmlnhtyvae.com/", "source_format": "rst", "revision_number": 13, "created": 1289323060000}, {"id": "f1ddf4ee-2f95-11f1-b4a0-e86a64d24d78", "node_id": "f1dce8e3-2f95-11f1-b249-e86a64d24d78", "user_id": null, "author": null, "data": "2qyQdJ szqptphcldqe, [url=http://rwrthmvtzjcm.com/]rwrthmvtzjcm[/url], [link=http://pbvvkeeleuko.com/]pbvvkeeleuko[/link], http://fknxjhefhdak.com/2qyQdJ szqptphcldqe, [url=http://rwrthmvtzjcm.com/]rwrthmvtzjcm[/url], [link=http://pbvvkeeleuko.com/]pbvvkeeleuko[/link], http://fknxjhefhdak.com/2qyQdJ szqptphcldqe, [url=http://rwrthmvtzjcm.com/]rwrthmvtzjcm[/url], [link=http://pbvvkeeleuko.com/]pbvvkeeleuko[/link], http://fknxjhefhdak.com/2qyQdJ szqptphcldqe, [url=http://rwrthmvtzjcm.com/]rwrthmvtzjcm[/url], [link=http://pbvvkeeleuko.com/]pbvvkeeleuko[/link], http://fknxjhefhdak.com/2qyQdJ szqptphcldqe, [url=http://rwrthmvtzjcm.com/]rwrthmvtzjcm[/url], [link=http://pbvvkeeleuko.com/]pbvvkeeleuko[/link], http://fknxjhefhdak.com/2qyQdJ szqptphcldqe, [url=http://rwrthmvtzjcm.com/]rwrthmvtzjcm[/url], [link=http://pbvvkeeleuko.com/]pbvvkeeleuko[/link], http://fknxjhefhdak.com/2qyQdJ szqptphcldqe, [url=http://rwrthmvtzjcm.com/]rwrthmvtzjcm[/url], [link=http://pbvvkeeleuko.com/]pbvvkeeleuko[/link], http://fknxjhefhdak.com/2qyQdJ szqptphcldqe, [url=http://rwrthmvtzjcm.com/]rwrthmvtzjcm[/url], [link=http://pbvvkeeleuko.com/]pbvvkeeleuko[/link], http://fknxjhefhdak.com/2qyQdJ szqptphcldqe, [url=http://rwrthmvtzjcm.com/]rwrthmvtzjcm[/url], [link=http://pbvvkeeleuko.com/]pbvvkeeleuko[/link], http://fknxjhefhdak.com/2qyQdJ szqptphcldqe, [url=http://rwrthmvtzjcm.com/]rwrthmvtzjcm[/url], [link=http://pbvvkeeleuko.com/]pbvvkeeleuko[/link], http://fknxjhefhdak.com/", "source_format": "rst", "revision_number": 12, "created": 1289303262000}, {"id": "f1ddf06b-2f95-11f1-9dc1-e86a64d24d78", "node_id": "f1dce8e3-2f95-11f1-b249-e86a64d24d78", "user_id": null, "author": null, "data": "2qyQdJ szqptphcldqe, [url=http://rwrthmvtzjcm.com/]rwrthmvtzjcm[/url], [link=http://pbvvkeeleuko.com/]pbvvkeeleuko[/link], http://fknxjhefhdak.com/2qyQdJ szqptphcldqe, [url=http://rwrthmvtzjcm.com/]rwrthmvtzjcm[/url], [link=http://pbvvkeeleuko.com/]pbvvkeeleuko[/link], http://fknxjhefhdak.com/2qyQdJ szqptphcldqe, [url=http://rwrthmvtzjcm.com/]rwrthmvtzjcm[/url], [link=http://pbvvkeeleuko.com/]pbvvkeeleuko[/link], http://fknxjhefhdak.com/2qyQdJ szqptphcldqe, [url=http://rwrthmvtzjcm.com/]rwrthmvtzjcm[/url], [link=http://pbvvkeeleuko.com/]pbvvkeeleuko[/link], http://fknxjhefhdak.com/2qyQdJ szqptphcldqe, [url=http://rwrthmvtzjcm.com/]rwrthmvtzjcm[/url], [link=http://pbvvkeeleuko.com/]pbvvkeeleuko[/link], http://fknxjhefhdak.com/2qyQdJ szqptphcldqe, [url=http://rwrthmvtzjcm.com/]rwrthmvtzjcm[/url], [link=http://pbvvkeeleuko.com/]pbvvkeeleuko[/link], http://fknxjhefhdak.com/2qyQdJ szqptphcldqe, [url=http://rwrthmvtzjcm.com/]rwrthmvtzjcm[/url], [link=http://pbvvkeeleuko.com/]pbvvkeeleuko[/link], http://fknxjhefhdak.com/2qyQdJ szqptphcldqe, [url=http://rwrthmvtzjcm.com/]rwrthmvtzjcm[/url], [link=http://pbvvkeeleuko.com/]pbvvkeeleuko[/link], http://fknxjhefhdak.com/2qyQdJ szqptphcldqe, [url=http://rwrthmvtzjcm.com/]rwrthmvtzjcm[/url], [link=http://pbvvkeeleuko.com/]pbvvkeeleuko[/link], http://fknxjhefhdak.com/2qyQdJ szqptphcldqe, [url=http://rwrthmvtzjcm.com/]rwrthmvtzjcm[/url], [link=http://pbvvkeeleuko.com/]pbvvkeeleuko[/link], http://fknxjhefhdak.com/", "source_format": "rst", "revision_number": 11, "created": 1289303250000}, {"id": "f1dde946-2f95-11f1-ac70-e86a64d24d78", "node_id": "f1dce8e3-2f95-11f1-b249-e86a64d24d78", "user_id": "edc3f576-2f95-11f1-900f-e86a64d24d78", "author": "foxhop", "data": "SSH Tunnel for HTTP Traffic\r\n==============================\r\n\r\n**Are You stuck behind a firewall?**\r\n\r\n Does your school, library, work, or parents control where you surf and what ports you have open? Do you surf on such public domains and need more privacy? Are you sick of failing proxies? If you answered 'Y' to any of these questions then this tutorial is for you.\r\n\r\n**My Story** \r\n\r\n My place of employment has a bastard firewall and it blocks nearly all ports and many great sites. (such as foxhop.net, icodeviruses.com, or youtube.com). I needed a way to get around the blocks and not get caught.\r\n\r\n\r\n\r\n.. contents:: Sections \r\n\r\nCommon Questions\r\n-------------------\r\n**What is the best way to get around a firewall?** \r\n \r\n Create an SSH tunnel from the work network to your home network.\r\n\r\n**My network administrator is smart, will I get caught?**\r\n \r\n No, you will most likely not get caught. All the firewall sees is a connection to a resource on the internet. When you browse the web using the tunnel all traffic is encrypted. If a network administrator captured packets he would only get garbage data. An SSH tunnel is basically a VPN between two computers or networks. 1337\t\r\n\r\n**Can a network admin stop a person or computer from tunneling?**\r\n \r\n The Admin will typically not know about the tunnel. From his view a tiny connection is being placed and is normally overlooked. The admin does have the ability to block the default SSH port 22. You can build your tunnel over any port.\r\n\r\nArticle Scope\r\n-------------------\r\n\r\n.. _Putty.exe: http://www.chiark.greenend.org.uk/~sgtatham/putty/download.html\r\n.. _Firefox: http://portableapps.com/apps/internet/firefox_portable\r\n\r\nWe will discuss the steps of building an SSH Tunnel for HTTP traffic between two computers on different networks. This guide will cover both windows and linux localhosts.\r\n\r\nThroughout this guide I will use the following terms, here are the definitions:\r\n\r\n*localhost*\r\n The computer at work or school.\r\n*remotehost*\r\n The computer or server that is offsite, which has the SSH server running.\r\n\r\n**What you need ...**\r\n\r\n#. Credentials to a remotehost running an SSH server. (openssh-server)\r\n#. A localhost computer crippled by a pesky network firewall.\r\n#. An SSH client, For windows get Putty.exe_\r\n#. Firefox_ ( Portable is best )\r\n\r\n**Why is this the best method?**\r\n\r\n#. Most of the configuration is done from the localhost (while at school or work).\r\n#. You don't need admin rights to run Putty.exe_, just place it on a USB drive.\r\n#. You don't need admin rights to run Firefox_ Portable, just place it on a USB drive.\r\n#. No changes need to be made on the remotehost ssh server.\r\n\r\n\r\nSSH Tunnel created from a Windows localhost\r\n-----------------------------------------------\r\n\r\nFollow this guide if your localhost (school or work) computer is Windows based.\r\n\r\nConfigure the SSH Server\r\n~~~~~~~~~~~~~~~~~~~~~~~~~~~~~\r\n\r\nThe remotehost SSH server doesn't need to be configured. \r\n\r\nJust be sure its installed and running and that you have credentials to login. It just needs to be installed and running and you just need credentials.\r\n\r\nTo install openSSH-server on Debian or Ubuntu linux type:\r\n\r\n.. code-block:: apache\r\n\r\n sudo apt-get install ssh\r\n \r\nWhen I'm at work, I establish an SSH Tunnel to my remotehost webserver at home. \r\n\r\nKeep in mind that this doesn't have to be your server, you just need credentials for SSH. \r\n\r\n\r\nConfigure the SSH Client\r\n~~~~~~~~~~~~~~~~~~~~~~~~~~~\r\n#. Download Putty.exe_ if you haven't already, you should follow along.\r\n\r\n#. Double click Putty.exe_.\r\n\r\n .. image:: http://engineer.siue.edu/puttyConnectScreen.gif\r\n\r\n#. The 'Host Name (or IP address)' box should point to the SSH enabled remoteserver. \r\n\r\n#. Toggle the SSH radio button to set the port to 22. (The native SSH port). \r\n\r\n#. Type a name into the 'Saved Sessions' box to save all the settings we toggle.\r\n\r\n#. Click the save button.\r\n\r\n#. There is a list of categories to the left of the putty window.\r\n\r\n#. Navigate to: ( Connection > SSH > Tunnel )\r\n\r\n#. You should be at a menu that is labeled 'Options controlling SSH port forwarding'.\r\n \r\n#. Click the 'Dynamic' radio button. \r\n\r\n#. Leave 'Destination' text box blank.\r\n \r\n#. Type '7070' into the 'Source port' text box.\r\n\r\n#. Click the 'Add' button.\r\n\r\n#. Save your configuration by going back to the 'Session' category, selecting your saved session, and pressing the 'save' button.\r\n\r\n#. Double-click your saved session.\r\n\r\n#. A black terminal window should appear.\r\n\r\n#. You will be prompted for a username and password. \r\n\r\n#. You should be greeted by the server if successful. Leave the putty window open.\r\n\r\n#. `Configure Firefox... <#configure-firefox-to-use-the-ssh-tunnel>`_\r\n\r\n\r\nSSH Tunnel created from a Linux localhost\r\n------------------------------------------------\r\n\r\nFollow this guide if your localhost (work or school) computer is Linux.\r\n\r\nCreate the tunnel\r\n~~~~~~~~~~~~~~~~~~~~~~\r\n\r\nOpen a terminal or console window, and enter the following command:\r\n\r\n.. code-block:: bash\r\n\r\n ssh -ND 7070 user@remotehost_ip\r\n\r\nYou will be prompted for credentials on the remotehost. \r\n\r\nAll you need to do is login to establish the tunnel.\r\n\r\n\r\n\r\nConfigure Firefox to use the SSH Tunnel\r\n------------------------------------------\r\n\r\nSetup Socks 5 proxy.\r\n\r\n#. Open Firefox_.\r\n\r\n#. Click **Edit** -> **Preferences**\r\n\r\n#. Click the **Advanced** and **Network** tabs.\r\n\r\n#. Click the **Settings...** button.\r\n\r\n#. Click the **Manual Proxy Configuration** radio button\r\n\r\n#. In **Socks Host** type *localhost*. In port type *7070*.\r\n\r\n .. image:: /attachment/ff-settings.jpg\r\n :align: left \r\n\r\nYou should now be able to browse the Internet using your remote connection. All data will be passed through the remote hosts internet connection. All traffic will be encrypted between the localhost and the remotehost.\r\n\r\n\r\nTunnel to multiple vnc hosts behind a firewall\r\n==============================================================\r\n\r\n.. code-block:: bash\r\n\r\n ssh -L :: @\r\n\r\n ssh -L 31337:remote.foxhop.net:5900 user@foxhop.net\r\n\r\n ssh -L 31338:remote2.foxhop.net:5900 user@foxhop.net\r\n\r\nThen open vnc and point to 127.0.0.1:31338 or 127.0.0.1:31337\r\n", "source_format": "rst", "revision_number": 10, "created": 1287238068000}, {"id": "f1dde16e-2f95-11f1-8f15-e86a64d24d78", "node_id": "f1dce8e3-2f95-11f1-b249-e86a64d24d78", "user_id": "edc3f576-2f95-11f1-900f-e86a64d24d78", "author": "foxhop", "data": "SSH Tunnel for HTTP Traffic\r\n==============================\r\n\r\n**Are You stuck behind a firewall?**\r\n\r\n Does your school, library, work, or parents control where you surf and what ports you have open? Do you surf on such public domains and need more privacy? Are you sick of failing proxies? If you answered 'Y' to any of these questions then this tutorial is for you.\r\n\r\n**My Story** \r\n\r\n My place of employment has a bastard firewall and it blocks nearly all ports and many great sites. (such as foxhop.net, icodeviruses.com, or youtube.com). I needed a way to get around the blocks and not get caught.\r\n\r\n\r\n\r\n.. contents:: Sections \r\n\r\nCommon Questions\r\n-------------------\r\n**What is the best way to get around a firewall?** \r\n \r\n Create an SSH tunnel from the work network to your home network.\r\n\r\n**My network administrator is smart, will I get caught?**\r\n \r\n No, you will most likely not get caught. All the firewall sees is a connection to a resource on the internet. When you browse the web using the tunnel all traffic is encrypted. If a network administrator captured packets he would only get garbage data. An SSH tunnel is basically a VPN between two computers or networks. 1337\t\r\n\r\n**Can a network admin stop a person or computer from tunneling?**\r\n \r\n The Admin will typically not know about the tunnel. From his view a tiny connection is being placed and is normally overlooked. The admin does have the ability to block the default SSH port 22. You can build your tunnel over any port.\r\n\r\nArticle Scope\r\n-------------------\r\n\r\n.. _Putty.exe: http://www.chiark.greenend.org.uk/~sgtatham/putty/download.html\r\n.. _Firefox: http://portableapps.com/apps/internet/firefox_portable\r\n\r\nWe will discuss the steps of building an SSH Tunnel for HTTP traffic between two computers on different networks. This guide will cover both windows and linux localhosts.\r\n\r\nThroughout this guide I will use the following terms, here are the definitions:\r\n\r\n*localhost*\r\n The computer at work or school.\r\n*remotehost*\r\n The computer or server that is offsite, which has the SSH server running.\r\n\r\n**What you need ...**\r\n\r\n#. Credentials to a remotehost running an SSH server. (openssh-server)\r\n#. A localhost computer crippled by a pesky network firewall.\r\n#. An SSH client, For windows get Putty.exe_\r\n#. Firefox_ ( Portable is best )\r\n\r\n**Why is this the best method?**\r\n\r\n#. Most of the configuration is done from the localhost (while at school or work).\r\n#. You don't need admin rights to run Putty.exe_, just place it on a USB drive.\r\n#. You don't need admin rights to run Firefox_ Portable, just place it on a USB drive.\r\n#. No changes need to be made on the remotehost ssh server.\r\n\r\n\r\nSSH Tunnel created from a Windows localhost\r\n-----------------------------------------------\r\n\r\nFollow this guide if your localhost (school or work) computer is Windows based.\r\n\r\nConfigure the SSH Server\r\n~~~~~~~~~~~~~~~~~~~~~~~~~~~~~\r\n\r\nThe remotehost SSH server doesn't need to be configured. \r\n\r\nJust be sure its installed and running and that you have credentials to login. It just needs to be installed and running and you just need credentials.\r\n\r\nTo install openSSH-server on Debian or Ubuntu linux type:\r\n\r\n.. code-block:: apache\r\n\r\n sudo apt-get install ssh\r\n \r\nWhen I'm at work, I establish an SSH Tunnel to my remotehost webserver at home. \r\n\r\nKeep in mind that this doesn't have to be your server, you just need credentials for SSH. \r\n\r\n\r\nConfigure the SSH Client\r\n~~~~~~~~~~~~~~~~~~~~~~~~~~~\r\n#. Download Putty.exe_ if you haven't already, you should follow along.\r\n\r\n#. Double click Putty.exe_.\r\n\r\n .. image:: http://engineer.siue.edu/puttyConnectScreen.gif\r\n\r\n#. The 'Host Name (or IP address)' box should point to the SSH enabled remoteserver. \r\n\r\n#. Toggle the SSH radio button to set the port to 22. (The native SSH port). \r\n\r\n#. Type a name into the 'Saved Sessions' box to save all the settings we toggle.\r\n\r\n#. Click the save button.\r\n\r\n#. There is a list of categories to the left of the putty window.\r\n\r\n#. Navigate to: ( Connection > SSH > Tunnel )\r\n\r\n#. You should be at a menu that is labeled 'Options controlling SSH port forwarding'.\r\n \r\n#. Click the 'Dynamic' radio button. \r\n\r\n#. Leave 'Destination' text box blank.\r\n \r\n#. Type '7070' into the 'Source port' text box.\r\n\r\n#. Click the 'Add' button.\r\n\r\n#. Save your configuration by going back to the 'Session' category, selecting your saved session, and pressing the 'save' button.\r\n\r\n#. Double-click your saved session.\r\n\r\n#. A black terminal window should appear.\r\n\r\n#. You will be prompted for a username and password. \r\n\r\n#. You should be greeted by the server if successful. Leave the putty window open.\r\n\r\n#. `Configure Firefox... <#configure-firefox-to-use-the-ssh-tunnel>`_\r\n\r\n\r\nSSH Tunnel created from a Linux localhost\r\n------------------------------------------------\r\n\r\nFollow this guide if your localhost (work or school) computer is Linux.\r\n\r\nCreate the tunnel\r\n~~~~~~~~~~~~~~~~~~~~~~\r\n\r\nOpen a terminal or console window, and enter the following command:\r\n\r\n.. code-block:: bash\r\n\r\n ssh -ND 7070 user@remotehost_ip\r\n\r\nYou will be prompted for credentials on the remotehost. \r\n\r\nAll you need to do is login to establish the tunnel.\r\n\r\n\r\n\r\nConfigure Firefox to use the SSH Tunnel\r\n------------------------------------------\r\n\r\nSetup Socks 5 proxy.\r\n\r\n#. Open Firefox_.\r\n\r\n#. Click **Edit** -> **Preferences**\r\n\r\n#. Click the **Advanced** and **Network** tabs.\r\n\r\n#. Click the **Settings...** button.\r\n\r\n#. Click the **Manual Proxy Configuration** radio button\r\n\r\n#. In **Socks Host** type *localhost*. In port type *7070*.\r\n\r\n .. image:: /attachment/ff-settings.jpg\r\n :align: left \r\n\r\nYou should now be able to browse the Internet using your remote connection. All data will be passed through the remote hosts internet connection. All traffic will be encrypted between the localhost and the remotehost.\r\n\r\n\r\nTunnel to multiple vnc hosts behind a firewall\r\n==============================================================\r\n\r\nssh -L [localport]:remotehost:remoteport sshuser@sshserver\r\n\r\nssh -L 31337:rhost1:5900 user@foxhop.net\r\n\r\nssh -L 31338:rhost2:5900 user@foxhop.net\r\n", "source_format": "rst", "revision_number": 9, "created": 1287237724000}, {"id": "f1ddd9f4-2f95-11f1-962f-e86a64d24d78", "node_id": "f1dce8e3-2f95-11f1-b249-e86a64d24d78", "user_id": "edc3f576-2f95-11f1-900f-e86a64d24d78", "author": "foxhop", "data": "SSH Tunnel for HTTP Traffic\r\n==============================\r\n\r\n**Are You stuck behind a firewall?**\r\n\r\n Does your school, library, work, or parents control where you surf and what ports you have open? Do you surf on such public domains and need more privacy? Are you sick of failing proxies? If you answered 'Y' to any of these questions then this tutorial is for you.\r\n\r\n**My Story** \r\n\r\n My place of employment has a bastard firewall and it blocks nearly all ports and many great sites. (such as foxhop.net, icodeviruses.com, or youtube.com). I needed a way to get around the blocks and not get caught.\r\n\r\n\r\n\r\n.. contents:: Sections \r\n\r\nCommon Questions\r\n-------------------\r\n**What is the best way to get around a firewall?** \r\n \r\n Create an SSH tunnel from the work network to your home network.\r\n\r\n**My network administrator is smart, will I get caught?**\r\n \r\n No, you will most likely not get caught. All the firewall sees is a connection to a resource on the internet. When you browse the web using the tunnel all traffic is encrypted. If a network administrator captured packets he would only get garbage data. An SSH tunnel is basically a VPN between two computers or networks. 1337\t\r\n\r\n**Can a network admin stop a person or computer from tunneling?**\r\n \r\n The Admin will typically not know about the tunnel. From his view a tiny connection is being placed and is normally overlooked. The admin does have the ability to block the default SSH port 22. You can build your tunnel over any port.\r\n\r\nArticle Scope\r\n-------------------\r\n\r\n.. _Putty.exe: http://www.chiark.greenend.org.uk/~sgtatham/putty/download.html\r\n.. _Firefox: http://portableapps.com/apps/internet/firefox_portable\r\n\r\nWe will discuss the steps of building an SSH Tunnel for HTTP traffic between two computers on different networks. This guide will cover both windows and linux localhosts.\r\n\r\nThroughout this guide I will use the following terms, here are the definitions:\r\n\r\n*localhost*\r\n The computer at work or school.\r\n*remotehost*\r\n The computer or server that is offsite, which has the SSH server running.\r\n\r\n**What you need ...**\r\n\r\n#. Credentials to a remotehost running an SSH server. (openssh-server)\r\n#. A localhost computer crippled by a pesky network firewall.\r\n#. An SSH client, For windows get Putty.exe_\r\n#. Firefox_ ( Portable is best )\r\n\r\n**Why is this the best method?**\r\n\r\n#. Most of the configuration is done from the localhost (while at school or work).\r\n#. You don't need admin rights to run Putty.exe_, just place it on a USB drive.\r\n#. You don't need admin rights to run Firefox_ Portable, just place it on a USB drive.\r\n#. No changes need to be made on the remotehost ssh server.\r\n\r\n\r\nSSH Tunnel created from a Windows localhost\r\n-----------------------------------------------\r\n\r\nFollow this guide if your localhost (school or work) computer is Windows based.\r\n\r\nConfigure the SSH Server\r\n~~~~~~~~~~~~~~~~~~~~~~~~~~~~~\r\n\r\nThe remotehost SSH server doesn't need to be configured. \r\n\r\nJust be sure its installed and running and that you have credentials to login. It just needs to be installed and running and you just need credentials.\r\n\r\nTo install openSSH-server on Debian or Ubuntu linux type:\r\n\r\n.. code-block:: apache\r\n\r\n sudo apt-get install ssh\r\n \r\nWhen I'm at work, I establish an SSH Tunnel to my remotehost webserver at home. \r\n\r\nKeep in mind that this doesn't have to be your server, you just need credentials for SSH. \r\n\r\n\r\nConfigure the SSH Client\r\n~~~~~~~~~~~~~~~~~~~~~~~~~~~\r\n#. Download Putty.exe_ if you haven't already, you should follow along.\r\n\r\n#. Double click Putty.exe_.\r\n\r\n .. image:: http://engineer.siue.edu/puttyConnectScreen.gif\r\n\r\n#. The 'Host Name (or IP address)' box should point to the SSH enabled remoteserver. \r\n\r\n#. Toggle the SSH radio button to set the port to 22. (The native SSH port). \r\n\r\n#. Type a name into the 'Saved Sessions' box to save all the settings we toggle.\r\n\r\n#. Click the save button.\r\n\r\n#. There is a list of categories to the left of the putty window.\r\n\r\n#. Navigate to: ( Connection > SSH > Tunnel )\r\n\r\n#. You should be at a menu that is labeled 'Options controlling SSH port forwarding'.\r\n \r\n#. Click the 'Dynamic' radio button. \r\n\r\n#. Leave 'Destination' text box blank.\r\n \r\n#. Type '7070' into the 'Source port' text box.\r\n\r\n#. Click the 'Add' button.\r\n\r\n#. Save your configuration by going back to the 'Session' category, selecting your saved session, and pressing the 'save' button.\r\n\r\n#. Double-click your saved session.\r\n\r\n#. A black terminal window should appear.\r\n\r\n#. You will be prompted for a username and password. \r\n\r\n#. You should be greeted by the server if successful. Leave the putty window open.\r\n\r\n#. `Configure Firefox... <#configure-firefox-to-use-the-ssh-tunnel>`_\r\n\r\n\r\nSSH Tunnel created from a Linux localhost\r\n------------------------------------------------\r\n\r\nFollow this guide if your localhost (work or school) computer is Linux.\r\n\r\nCreate the tunnel\r\n~~~~~~~~~~~~~~~~~~~~~~\r\n\r\nOpen a terminal or console window, and enter the following command:\r\n\r\n.. code-block:: bash\r\n\r\n ssh -ND 7070 user@remotehost_ip\r\n\r\nYou will be prompted for credentials on the remotehost. \r\n\r\nAll you need to do is login to establish the tunnel.\r\n\r\n\r\n\r\nConfigure Firefox to use the SSH Tunnel\r\n------------------------------------------\r\n\r\nSetup Socks 5 proxy.\r\n\r\n#. Open Firefox_.\r\n\r\n#. Click **Edit** -> **Preferences**\r\n\r\n#. Click the **Advanced** and **Network** tabs.\r\n\r\n#. Click the **Settings...** button.\r\n\r\n#. Click the **Manual Proxy Configuration** radio button\r\n\r\n#. In **Socks Host** type *localhost*. In port type *7070*.\r\n\r\nYou should now be able to browse the Internet using your remote connection. All data will be passed through the remote hosts internet connection. All traffic will be encrypted between the localhost and the remotehost.\r\n\r\n\r\nTunnel to multiple vnc hosts behind a firewall\r\n==============================================================\r\n\r\nssh -L [localport]:remotehost:remoteport sshuser@sshserver\r\n\r\nssh -L 31337:rhost1:5900 user@foxhop.net\r\n\r\nssh -L 31338:rhost2:5900 user@foxhop.net\r\n", "source_format": "rst", "revision_number": 8, "created": 1287237275000}, {"id": "f1ddd466-2f95-11f1-9412-e86a64d24d78", "node_id": "f1dce8e3-2f95-11f1-b249-e86a64d24d78", "user_id": "edc3f576-2f95-11f1-900f-e86a64d24d78", "author": "foxhop", "data": "SSH Tunnel for HTTP Traffic\r\n==============================\r\n\r\n**Are You stuck behind a firewall?**\r\n\r\n Does your school, library, work, or parents control where you surf and what ports you have open? Do you surf on such public domains and need more privacy? Are you sick of failing proxies? If you answered 'Y' to any of these questions then this tutorial is for you.\r\n\r\n**My Story** \r\n\r\n My place of employment has a bastard firewall and it blocks nearly all ports and many great sites. (such as foxhop.net, icodeviruses.com, or youtube.com). I needed a way to get around the blocks and not get caught.\r\n\r\n\r\n\r\n.. contents:: Sections \r\n\r\nCommon Questions\r\n-------------------\r\n**What is the best way to get around a firewall?** \r\n \r\n Create an SSH tunnel from the work network to your home network.\r\n\r\n**My network administrator is smart, will I get caught?**\r\n \r\n No, you will most likely not get caught. All the firewall sees is a connection to a resource on the internet. When you browse the web using the tunnel all traffic is encrypted. If a network administrator captured packets he would only get garbage data. An SSH tunnel is basically a VPN between two computers or networks. 1337\t\r\n\r\n**Can a network admin stop a person or computer from tunneling?**\r\n \r\n The Admin will typically not know about the tunnel. From his view a tiny connection is being placed and is normally overlooked. The admin does have the ability to block the default SSH port 22. You can build your tunnel over any port.\r\n\r\nArticle Scope\r\n-------------------\r\n\r\n.. _Putty.exe: http://www.chiark.greenend.org.uk/~sgtatham/putty/download.html\r\n.. _Firefox: http://portableapps.com/apps/internet/firefox_portable\r\n\r\nWe will discuss the steps of building an SSH Tunnel for HTTP traffic between two computers on different networks. This guide will cover both windows and linux localhosts.\r\n\r\nThroughout this guide I will use the following terms, here are the definitions:\r\n\r\n*localhost*\r\n The computer at work or school.\r\n*remotehost*\r\n The computer or server that is offsite, which has the SSH server running.\r\n\r\n**What you need ...**\r\n\r\n#. Credentials to a remotehost running an SSH server. (openssh-server)\r\n#. A localhost computer crippled by a pesky network firewall.\r\n#. An SSH client, For windows get Putty.exe_\r\n#. Firefox_ ( Portable is best )\r\n\r\n**Why is this the best method?**\r\n\r\n#. Most of the configuration is done from the localhost (while at school or work).\r\n#. You don't need admin rights to run Putty.exe_, just place it on a USB drive.\r\n#. You don't need admin rights to run Firefox_ Portable, just place it on a USB drive.\r\n#. No changes need to be made on the remotehost ssh server.\r\n\r\n\r\nSSH Tunnel created from a Windows localhost\r\n-----------------------------------------------\r\n\r\nFollow this guide if your localhost (school or work) computer is Windows based.\r\n\r\nConfigure the SSH Server\r\n~~~~~~~~~~~~~~~~~~~~~~~~~~~~~\r\n\r\nThe remotehost SSH server doesn't need to be configured. \r\n\r\nJust be sure its installed and running and that you have credentials to login. It just needs to be installed and running and you just need credentials.\r\n\r\nTo install openSSH-server on Debian or Ubuntu linux type:\r\n\r\n.. code-block:: apache\r\n\r\n sudo apt-get install ssh\r\n \r\nWhen I'm at work, I establish an SSH Tunnel to my remotehost webserver at home. \r\n\r\nKeep in mind that this doesn't have to be your server, you just need credentials for SSH. \r\n\r\n\r\nConfigure the SSH Client\r\n~~~~~~~~~~~~~~~~~~~~~~~~~~~\r\n#. Download Putty.exe_ if you haven't already, you should follow along.\r\n\r\n#. Double click Putty.exe_.\r\n\r\n .. image:: http://engineer.siue.edu/puttyConnectScreen.gif\r\n\r\n#. The 'Host Name (or IP address)' box should point to the SSH enabled remoteserver. \r\n\r\n#. Toggle the SSH radio button to set the port to 22. (The native SSH port). \r\n\r\n#. Type a name into the 'Saved Sessions' box to save all the settings we toggle.\r\n\r\n#. Click the save button.\r\n\r\n#. There is a list of categories to the left of the putty window.\r\n\r\n#. Navigate to: ( Connection > SSH > Tunnel )\r\n\r\n#. You should be at a menu that is labeled 'Options controlling SSH port forwarding'.\r\n \r\n#. Click the 'Dynamic' radio button. \r\n\r\n#. Leave 'Destination' text box blank.\r\n \r\n#. Type '7070' into the 'Source port' text box.\r\n\r\n#. Click the 'Add' button.\r\n\r\n#. Save your configuration by going back to the 'Session' category, selecting your saved session, and pressing the 'save' button.\r\n\r\n#. Double-click your saved session.\r\n\r\n#. A black terminal window should appear.\r\n\r\n#. You will be prompted for a username and password. \r\n\r\n#. You should be greeted by the server if successful. Leave the putty window open.\r\n\r\n#. `Configure Firefox... <#configure-firefox-to-use-the-ssh-tunnel>`_\r\n\r\n\r\nSSH Tunnel created from a Linux localhost\r\n------------------------------------------------\r\n\r\nFollow this guide if your localhost (work or school) computer is Linux.\r\n\r\nCreate the tunnel\r\n~~~~~~~~~~~~~~~~~~~~~~\r\n\r\nOpen a terminal or console window, and enter the following command:\r\n\r\n..code-block:: apache\r\n\r\n ssh -ND 7070 user@remotehost_ip\r\n\r\nYou will be prompted for credentials on the remotehost. \r\n\r\nAll you need to do is login to establish the tunnel.\r\n\r\n\r\n\r\nConfigure Firefox to use the SSH Tunnel\r\n------------------------------------------\r\n\r\nSetup Socks 5 proxy.\r\n\r\n#. Open Firefox_.\r\n\r\n#. Click **Edit** -> **Preferences**\r\n\r\n#. Click the **Advanced** and **Network** tabs.\r\n\r\n#. Click the **Settings...** button.\r\n\r\n#. Click the **Manual Proxy Configuration** radio button\r\n\r\n#. In **Socks Host** type *localhost*. In port type *7070*.\r\n\r\nYou should now be able to browse the Internet using your remote connection. All data will be passed through the remote hosts internet connection. All traffic will be encrypted between the localhost and the remotehost.\r\n\r\n\r\nTunnel to multiple vnc hosts behind a firewall\r\n==============================================================\r\n\r\nssh -L [localport]:remotehost:remoteport sshuser@sshserver\r\n\r\nssh -L 31337:rhost1:5900 user@foxhop.net\r\n\r\nssh -L 31338:rhost2:5900 user@foxhop.net\r\n", "source_format": "rst", "revision_number": 7, "created": 1287237240000}, {"id": "f1ddcd00-2f95-11f1-9289-e86a64d24d78", "node_id": "f1dce8e3-2f95-11f1-b249-e86a64d24d78", "user_id": "edc3f576-2f95-11f1-900f-e86a64d24d78", "author": "foxhop", "data": "SSH Tunnel for HTTP Traffic\r\n==============================\r\n\r\n**Are You stuck behind a firewall?**\r\n\r\n Does your school, library, work, or parents control where you surf and what ports you have open? Do you surf on such public domains and need more privacy? Are you sick of failing proxies? If you answered 'Y' to any of these questions then this tutorial is for you.\r\n\r\n**My Story** \r\n\r\n My place of employment has a bastard firewall and it blocks nearly all ports and many great sites. (such as foxhop.net, icodeviruses.com, or youtube.com). I needed a way to get around the blocks and not get caught.\r\n\r\n\r\n\r\n.. contents:: Sections \r\n\r\nCommon Questions\r\n-------------------\r\n**What is the best way to get around a firewall?** \r\n \r\n Create an SSH tunnel from the work network to your home network.\r\n\r\n**My network administrator is smart, will I get caught?**\r\n \r\n No, you will most likely not get caught. All the firewall sees is a connection to a resource on the internet. When you browse the web using the tunnel all traffic is encrypted. If a network administrator captured packets he would only get garbage data. An SSH tunnel is basically a VPN between two computers or networks. 1337\t\r\n\r\n**Can a network admin stop a person or computer from tunneling?**\r\n \r\n The Admin will typically not know about the tunnel. From his view a tiny connection is being placed and is normally overlooked. The admin does have the ability to block the default SSH port 22. You can build your tunnel over any port.\r\n\r\nArticle Scope\r\n-------------------\r\n\r\n.. _Putty.exe: http://www.chiark.greenend.org.uk/~sgtatham/putty/download.html\r\n.. _Firefox: http://portableapps.com/apps/internet/firefox_portable\r\n\r\nWe will discuss the steps of building an SSH Tunnel for HTTP traffic between two computers on different networks. This guide will cover both windows and linux localhosts.\r\n\r\nThroughout this guide I will use the following terms, here are the definitions:\r\n\r\n*localhost*\r\n The computer at work or school.\r\n*remotehost*\r\n The computer or server that is offsite, which has the SSH server running.\r\n\r\n**What you need ...**\r\n\r\n#. Credentials to a remotehost running an SSH server. (openssh-server)\r\n#. A localhost computer crippled by a pesky network firewall.\r\n#. An SSH client, For windows get Putty.exe_\r\n#. Firefox_ ( Portable is best )\r\n\r\n**Why is this the best method?**\r\n\r\n#. Most of the configuration is done from the localhost (while at school or work).\r\n#. You don't need admin rights to run Putty.exe_, just place it on a USB drive.\r\n#. You don't need admin rights to run Firefox_ Portable, just place it on a USB drive.\r\n#. No changes need to be made on the remotehost ssh server.\r\n\r\n\r\nSSH Tunnel created from a Windows localhost\r\n-----------------------------------------------\r\n\r\nFollow this guide if your localhost (school or work) computer is Windows based.\r\n\r\nConfigure the SSH Server\r\n~~~~~~~~~~~~~~~~~~~~~~~~~~~~~\r\n\r\nThe remotehost SSH server doesn't need to be configured. \r\n\r\nJust be sure its installed and running and that you have credentials to login. It just needs to be installed and running and you just need credentials.\r\n\r\nTo install openSSH-server on Debian or Ubuntu linux type:\r\n\r\n.. code-block:: apache\r\n\r\n sudo apt-get install ssh\r\n \r\nWhen I'm at work, I establish an SSH Tunnel to my remotehost webserver at home. \r\n\r\nKeep in mind that this doesn't have to be your server, you just need credentials for SSH. \r\n\r\n\r\nConfigure the SSH Client\r\n~~~~~~~~~~~~~~~~~~~~~~~~~~~\r\n #. Download Putty.exe_ if you haven't already, you should follow along.\r\n\r\n #. Double click Putty.exe_.\r\n\r\n .. image:: http://engineer.siue.edu/puttyConnectScreen.gif\r\n\r\n #. The 'Host Name (or IP address)' box should point to the SSH enabled remoteserver. \r\n\r\n #. Toggle the SSH radio button to set the port to 22. (The native SSH port). \r\n\r\n #. Type a name into the 'Saved Sessions' box to save all the settings we toggle.\r\n\r\n #. Click the save button.\r\n\r\n #. There is a list of categories to the left of the putty window.\r\n\r\n #. Navigate to: ( Connection > SSH > Tunnel )\r\n\r\n #. You should be at a menu that is labeled 'Options controlling SSH port forwarding'.\r\n \r\n #. Click the 'Dynamic' radio button. \r\n\r\n #. Leave 'Destination' text box blank.\r\n \r\n #. Type '7070' into the 'Source port' text box.\r\n\r\n #. Click the 'Add' button.\r\n\r\n #. Save your configuration by going back to the 'Session' category, selecting your saved session, and pressing the 'save' button.\r\n\r\n #. Double-click your saved session.\r\n\r\n #. A black terminal window should appear.\r\n\r\n #. You will be prompted for a username and password. \r\n\r\n #. You should be greeted by the server if successful. Leave the putty window open.\r\n\r\n #. `Configure Firefox... <#configure-firefox-to-use-the-ssh-tunnel>`_\r\n\r\n\r\nSSH Tunnel created from a Linux localhost\r\n------------------------------------------------\r\n\r\n Follow this guide if your localhost (work or school) computer is Linux.\r\n\r\nCreate the tunnel\r\n~~~~~~~~~~~~~~~~~~~~~~\r\n\r\nOpen a terminal or console window, and enter the following command::\r\n\r\n ssh -ND 7070 user@remotehost_ip\r\n\r\nYou will be prompted for credentials on the remotehost. \r\n\r\nAll you need to do is login to establish the tunnel.\r\n\r\n\r\n\r\nConfigure Firefox to use the SSH Tunnel\r\n------------------------------------------\r\n\r\nSetup Socks 5 proxy.\r\n\r\n#. Open Firefox_.\r\n\r\n#. Click **Edit** -> **Preferences**\r\n\r\n#. Click the **Advanced** and **Network** tabs.\r\n\r\n#. Click the **Settings...** button.\r\n\r\n#. Click the **Manual Proxy Configuration** radio button\r\n\r\n#. In **Socks Host** type *localhost*. In port type *7070*.\r\n\r\nYou should now be able to browse the Internet using your remote connection. All data will be passed through the remote hosts internet connection. All traffic will be encrypted between the localhost and the remotehost.\r\n\r\n\r\nTunnel to multiple vnc hosts behind a firewall\r\n==============================================================\r\n\r\nssh -L [localport]:remotehost:remoteport sshuser@sshserver\r\n\r\nssh -L 31337:rhost1:5900 user@foxhop.net\r\n\r\nssh -L 31338:rhost2:5900 user@foxhop.net\r\n", "source_format": "rst", "revision_number": 6, "created": 1287237128000}, {"id": "f1ddc2e9-2f95-11f1-811d-e86a64d24d78", "node_id": "f1dce8e3-2f95-11f1-b249-e86a64d24d78", "user_id": "edc3f576-2f95-11f1-900f-e86a64d24d78", "author": "foxhop", "data": "SSH Tunnel for HTTP Traffic\r\n==============================\r\n\r\n**Are You stuck behind a firewall?**\r\n\r\n Does your school, library, work, or parents control where you surf and what ports you have open? Do you surf on such public domains and need more privacy? Are you sick of failing proxies?\r\n\r\n If you answered 'Y' to any of these questions then this tutorial is for you.\r\n\r\n**My Story** \r\n\r\n My place of employment has a bastard firewall and it blocks nearly all ports and many great sites. (such as foxhop.net, icodeviruses.com, or youtube.com). I needed a way to get around the blocks and not get caught.\r\n\r\n\r\n\r\n.. contents:: Sections \r\n\r\nCommon Questions\r\n-------------------\r\n**What is the best way to get around a firewall?** \r\n \r\n Create an SSH tunnel from the work network to your home network.\r\n\r\n**My network administrator is smart, will I get caught?**\r\n \r\n No, you will most likely not get caught. All the firewall sees is a connection to a resource on the internet. When you browse the web using the tunnel all traffic is encrypted. If a network administrator captured packets he would only get garbage data. An SSH tunnel is basically a VPN between two computers or networks. 1337\t\r\n\r\n**Can a network admin stop a person or computer from tunneling?**\r\n \r\n The Admin will typically not know about the tunnel. From his view a tiny connection is being placed and is normally overlooked. The admin does have the ability to block the default SSH port 22. You can build your tunnel over any port.\r\n\r\nArticle Scope\r\n-------------------\r\n\r\n.. _Putty.exe: http://www.chiark.greenend.org.uk/~sgtatham/putty/download.html\r\n.. _Firefox: http://portableapps.com/apps/internet/firefox_portable\r\n\r\nWe will discuss the steps of building an SSH Tunnel for HTTP traffic between two computers on different networks. This guide will cover both windows and linux localhosts.\r\n\r\nThroughout this guide I will use the following terms, here are the definitions:\r\n\r\n*localhost*\r\n The computer at work or school.\r\n*remotehost*\r\n The computer or server that is offsite, which has the SSH server running.\r\n\r\n**What you need ...**\r\n\r\n#. Credentials to a remotehost running an SSH server. (openssh-server)\r\n#. A localhost computer crippled by a pesky network firewall.\r\n#. An SSH client, For windows get Putty.exe_\r\n#. Firefox_ ( Portable is best )\r\n\r\n**Why is this the best method?**\r\n\r\n#. Most of the configuration is done from the localhost (while at school or work).\r\n#. You don't need admin rights to run Putty.exe_, just place it on a USB drive.\r\n#. You don't need admin rights to run Firefox_ Portable, just place it on a USB drive.\r\n#. No changes need to be made on the remotehost ssh server.\r\n\r\n\r\nSSH Tunnel created from a Windows localhost\r\n-----------------------------------------------\r\n\r\n Follow this guide if your localhost (school or work) computer is Windows based.\r\n\r\nConfigure the SSH Server\r\n~~~~~~~~~~~~~~~~~~~~~~~~~~~~~\r\n\r\nThe remotehost SSH server doesn't need to be configured. \r\n\r\nJust be sure its installed and running and that you have credentials to login. It just needs to be installed and running and you just need credentials.\r\n\r\nTo install openSSH-server on Debian or Ubuntu linux type::\r\n\r\n.. code-block:: python\r\n\r\n sudo apt-get install ssh\r\n \r\nWhen I'm at work, I establish an SSH Tunnel to my remotehost webserver at home. \r\n\r\nKeep in mind that this doesn't have to be your server, you just need credentials for SSH. \r\n\r\n\r\nConfigure the SSH Client\r\n~~~~~~~~~~~~~~~~~~~~~~~~~~~\r\n #. Download Putty.exe_ if you haven't already, you should follow along.\r\n\r\n #. Double click Putty.exe_.\r\n\r\n .. image:: http://engineer.siue.edu/puttyConnectScreen.gif\r\n\r\n #. The 'Host Name (or IP address)' box should point to the SSH enabled remoteserver. \r\n\r\n #. Toggle the SSH radio button to set the port to 22. (The native SSH port). \r\n\r\n #. Type a name into the 'Saved Sessions' box to save all the settings we toggle.\r\n\r\n #. Click the save button.\r\n\r\n #. There is a list of categories to the left of the putty window.\r\n\r\n #. Navigate to: ( Connection > SSH > Tunnel )\r\n\r\n #. You should be at a menu that is labeled 'Options controlling SSH port forwarding'.\r\n \r\n #. Click the 'Dynamic' radio button. \r\n\r\n #. Leave 'Destination' text box blank.\r\n \r\n #. Type '7070' into the 'Source port' text box.\r\n\r\n #. Click the 'Add' button.\r\n\r\n #. Save your configuration by going back to the 'Session' category, selecting your saved session, and pressing the 'save' button.\r\n\r\n #. Double-click your saved session.\r\n\r\n #. A black terminal window should appear.\r\n\r\n #. You will be prompted for a username and password. \r\n\r\n #. You should be greeted by the server if successful. Leave the putty window open.\r\n\r\n #. `Configure Firefox... <#configure-firefox-to-use-the-ssh-tunnel>`_\r\n\r\n\r\nSSH Tunnel created from a Linux localhost\r\n------------------------------------------------\r\n\r\n Follow this guide if your localhost (work or school) computer is Linux.\r\n\r\nCreate the tunnel\r\n~~~~~~~~~~~~~~~~~~~~~~\r\n\r\nOpen a terminal or console window, and enter the following command::\r\n\r\n ssh -ND 7070 user@remotehost_ip\r\n\r\nYou will be prompted for credentials on the remotehost. \r\n\r\nAll you need to do is login to establish the tunnel.\r\n\r\n\r\n\r\nConfigure Firefox to use the SSH Tunnel\r\n------------------------------------------\r\n\r\nSetup Socks 5 proxy.\r\n\r\n#. Open Firefox_.\r\n\r\n#. Click **Edit** -> **Preferences**\r\n\r\n#. Click the **Advanced** and **Network** tabs.\r\n\r\n#. Click the **Settings...** button.\r\n\r\n#. Click the **Manual Proxy Configuration** radio button\r\n\r\n#. In **Socks Host** type *localhost*. In port type *7070*.\r\n\r\nYou should now be able to browse the Internet using your remote connection. All data will be passed through the remote hosts internet connection. All traffic will be encrypted between the localhost and the remotehost.\r\n\r\n\r\nTunnel to multiple vnc hosts behind a firewall\r\n==============================================================\r\n\r\nssh -L [localport]:remotehost:remoteport sshuser@sshserver\r\n\r\nssh -L 31337:rhost1:5900 user@foxhop.net\r\n\r\nssh -L 31338:rhost2:5900 user@foxhop.net\r\n", "source_format": "rst", "revision_number": 5, "created": 1287237009000}, {"id": "f1ddb909-2f95-11f1-abca-e86a64d24d78", "node_id": "f1dce8e3-2f95-11f1-b249-e86a64d24d78", "user_id": "edc3f576-2f95-11f1-900f-e86a64d24d78", "author": "foxhop", "data": "SSH Tunnel for HTTP Traffic\r\n==============================\r\n\r\n**Are You stuck behind a firewall?**\r\n\r\n Does your school, library, work, or parents control where you surf and what ports you have open? Do you surf on such public domains and need more privacy? Are you sick of failing proxies?\r\n\r\n If you answered 'Y' to any of these questions then this tutorial is for you.\r\n\r\n**My Story** \r\n\r\n My place of employment has a bastard firewall and it blocks nearly all ports and many great sites. (such as foxhop.net, icodeviruses.com, or youtube.com). I needed a way to get around the blocks and not get caught.\r\n\r\n\r\n.. contents:: Sections \r\n\r\nCommon Questions\r\n-------------------\r\n**What is the best way to get around a firewall?** \r\n \r\n Create an SSH tunnel from the work network to your home network.\r\n\r\n**My network administrator is smart, will I get caught?**\r\n \r\n No, you will most likely not get caught. All the firewall sees is a connection to a resource on the internet. When you browse the web using the tunnel all traffic is encrypted. If a network administrator captured packets he would only get garbage data. An SSH tunnel is basically a VPN between two computers or networks. 1337\t\r\n\r\n**Can a network admin stop a person or computer from tunneling?**\r\n \r\n The Admin will typically not know about the tunnel. From his view a tiny connection is being placed and is normally overlooked. The admin does have the ability to block the default SSH port 22. You can build your tunnel over any port.\r\n\r\nArticle Scope\r\n-------------------\r\n\r\n.. _Putty.exe: http://www.chiark.greenend.org.uk/~sgtatham/putty/download.html\r\n.. _Firefox: http://portableapps.com/apps/internet/firefox_portable\r\n\r\nWe will discuss the steps of building an SSH Tunnel for HTTP traffic between two computers on different networks. This guide will cover both windows and linux localhosts.\r\n\r\nThroughout this guide I will use the following terms, here are the definitions:\r\n\r\n*localhost*\r\n The computer at work or school.\r\n*remotehost*\r\n The computer or server that is offsite, which has the SSH server running.\r\n\r\n**What you need ...**\r\n\r\n#. Credentials to a remotehost running an SSH server. (openssh-server)\r\n#. A localhost computer crippled by a pesky network firewall.\r\n#. An SSH client, For windows get Putty.exe_\r\n#. Firefox_ ( Portable is best )\r\n\r\n**Why is this the best method?**\r\n\r\n#. Most of the configuration is done from the localhost (while at school or work).\r\n#. You don't need admin rights to run Putty.exe_, just place it on a USB drive.\r\n#. You don't need admin rights to run Firefox_ Portable, just place it on a USB drive.\r\n#. No changes need to be made on the remotehost ssh server.\r\n\r\n\r\nSSH Tunnel created from a Windows localhost\r\n-----------------------------------------------\r\n\r\n Follow this guide if your localhost (school or work) computer is Windows based.\r\n\r\nConfigure the SSH Server\r\n~~~~~~~~~~~~~~~~~~~~~~~~~~~~~\r\n\r\nThe remotehost SSH server doesn't need to be configured. \r\n\r\nJust be sure its installed and running and that you have credentials to login. It just needs to be installed and running and you just need credentials.\r\n\r\nTo install openSSH-server on Debian or Ubuntu linux type::\r\n\r\n.. code-block:: python\r\n\r\n sudo apt-get install ssh\r\n \r\nWhen I'm at work, I establish an SSH Tunnel to my remotehost webserver at home. \r\n\r\nKeep in mind that this doesn't have to be your server, you just need credentials for SSH. \r\n\r\n\r\nConfigure the SSH Client\r\n~~~~~~~~~~~~~~~~~~~~~~~~~~~\r\n #. Download Putty.exe_ if you haven't already, you should follow along.\r\n\r\n #. Double click Putty.exe_.\r\n\r\n .. image:: http://engineer.siue.edu/puttyConnectScreen.gif\r\n\r\n #. The 'Host Name (or IP address)' box should point to the SSH enabled remoteserver. \r\n\r\n #. Toggle the SSH radio button to set the port to 22. (The native SSH port). \r\n\r\n #. Type a name into the 'Saved Sessions' box to save all the settings we toggle.\r\n\r\n #. Click the save button.\r\n\r\n #. There is a list of categories to the left of the putty window.\r\n\r\n #. Navigate to: ( Connection > SSH > Tunnel )\r\n\r\n #. You should be at a menu that is labeled 'Options controlling SSH port forwarding'.\r\n \r\n #. Click the 'Dynamic' radio button. \r\n\r\n #. Leave 'Destination' text box blank.\r\n \r\n #. Type '7070' into the 'Source port' text box.\r\n\r\n #. Click the 'Add' button.\r\n\r\n #. Save your configuration by going back to the 'Session' category, selecting your saved session, and pressing the 'save' button.\r\n\r\n #. Double-click your saved session.\r\n\r\n #. A black terminal window should appear.\r\n\r\n #. You will be prompted for a username and password. \r\n\r\n #. You should be greeted by the server if successful. Leave the putty window open.\r\n\r\n #. `Configure Firefox... <#configure-firefox-to-use-the-ssh-tunnel>`_\r\n\r\n\r\nSSH Tunnel created from a Linux localhost\r\n------------------------------------------------\r\n\r\n Follow this guide if your localhost (work or school) computer is Linux.\r\n\r\nCreate the tunnel\r\n~~~~~~~~~~~~~~~~~~~~~~\r\n\r\nOpen a terminal or console window, and enter the following command::\r\n\r\n ssh -ND 7070 user@remotehost_ip\r\n\r\nYou will be prompted for credentials on the remotehost. \r\n\r\nAll you need to do is login to establish the tunnel.\r\n\r\n\r\n\r\nConfigure Firefox to use the SSH Tunnel\r\n------------------------------------------\r\n\r\nSetup Socks 5 proxy.\r\n\r\n#. Open Firefox_.\r\n\r\n#. Click **Edit** -> **Preferences**\r\n\r\n#. Click the **Advanced** and **Network** tabs.\r\n\r\n#. Click the **Settings...** button.\r\n\r\n#. Click the **Manual Proxy Configuration** radio button\r\n\r\n#. In **Socks Host** type *localhost*. In port type *7070*.\r\n\r\nYou should now be able to browse the Internet using your remote connection. All data will be passed through the remote hosts internet connection. All traffic will be encrypted between the localhost and the remotehost.\r\n\r\n\r\nTunnel to multiple vnc hosts behind a firewall\r\n==============================================================\r\n\r\nssh -L [localport]:remotehost:remoteport sshuser@sshserver\r\n\r\nssh -L 31337:rhost1:5900 user@foxhop.net\r\n\r\nssh -L 31338:rhost2:5900 user@foxhop.net\r\n", "source_format": "rst", "revision_number": 4, "created": 1287236885000}, {"id": "f1ddb085-2f95-11f1-8a1b-e86a64d24d78", "node_id": "f1dce8e3-2f95-11f1-b249-e86a64d24d78", "user_id": "edc3f576-2f95-11f1-900f-e86a64d24d78", "author": "foxhop", "data": "SSH Tunnel for HTTP Traffic\r\n==============================\r\n\r\n**Are You stuck behind a firewall?**\r\n\r\n Does your school, library, work, or parents control where you surf and what ports you have open? Do you surf on such public domains and need more privacy? Are you sick of failing proxies?\r\n\r\n If you answered 'Y' to any of these questions then this tutorial is for you.\r\n\r\n**My Story** \r\n\r\n My place of employment has a bastard firewall and it blocks nearly all ports and many great sites. (such as foxhop.net, icodeviruses.com, or youtube.com). I needed a way to get around the blocks and not get caught.\r\n\r\n\r\n.. contents:: Sections \r\n\r\nCommon Questions\r\n-------------------\r\n**What is the best way to get around a firewall?** \r\n \r\n Create an SSH tunnel from the work network to your home network.\r\n\r\n**My network administrator is smart, will I get caught?**\r\n \r\n No, you will most likely not get caught. All the firewall sees is a connection to a resource on the internet. When you browse the web using the tunnel all traffic is encrypted. If a network administrator captured packets he would only get garbage data. An SSH tunnel is basically a VPN between two computers or networks. 1337\t\r\n\r\n**Can a network admin stop a person or computer from tunneling?**\r\n \r\n The Admin will typically not know about the tunnel. From his view a tiny connection is being placed and is normally overlooked. The admin does have the ability to block the default SSH port 22. You can build your tunnel over any port.\r\n\r\nArticle Scope\r\n-------------------\r\n\r\n.. _Putty.exe: http://www.chiark.greenend.org.uk/~sgtatham/putty/download.html\r\n.. _Firefox: http://portableapps.com/apps/internet/firefox_portable\r\n\r\nWe will discuss the steps of building an SSH Tunnel for HTTP traffic between two computers on different networks. This guide will cover both windows and linux localhosts.\r\n\r\nThroughout this guide I will use the following terms, here are the definitions:\r\n\r\n*localhost*\r\n The computer at work or school.\r\n*remotehost*\r\n The computer or server that is offsite, which has the SSH server running.\r\n\r\n**What you need ...**\r\n\r\n#. Credentials to a remotehost running an SSH server. (openssh-server)\r\n#. A localhost computer crippled by a pesky network firewall.\r\n#. An SSH client, For windows get Putty.exe_\r\n#. Firefox_ ( Portable is best )\r\n\r\n**Why is this the best method?**\r\n\r\n#. Most of the configuration is done from the localhost (while at school or work).\r\n#. You don't need admin rights to run Putty.exe_, just place it on a USB drive.\r\n#. You don't need admin rights to run Firefox_ Portable, just place it on a USB drive.\r\n#. No changes need to be made on the remotehost ssh server.\r\n\r\n\r\nSSH Tunnel created from a Windows localhost\r\n-----------------------------------------------\r\n\r\n Follow this guide if your localhost (school or work) computer is Windows based.\r\n\r\nConfigure the SSH Server\r\n~~~~~~~~~~~~~~~~~~~~~~~~~~~~~\r\n The remotehost SSH server doesn't need to be configured. \r\n\r\n Just be sure its installed and running and that you have credentials to login. It just needs to be installed and running and you just need credentials.\r\n\r\n To install openSSH-server on Debian or Ubuntu linux type::\r\n\r\n sudo apt-get install ssh\r\n \r\n When I'm at work, I establish an SSH Tunnel to my remotehost webserver at home. \r\n\r\n Keep in mind that this doesn't have to be your server, you just need credentials for SSH. \r\n\r\n\r\nConfigure the SSH Client\r\n~~~~~~~~~~~~~~~~~~~~~~~~~~~\r\n #. Download Putty.exe_ if you haven't already, you should follow along.\r\n\r\n #. Double click Putty.exe_.\r\n\r\n .. image:: http://engineer.siue.edu/puttyConnectScreen.gif\r\n\r\n #. The 'Host Name (or IP address)' box should point to the SSH enabled remoteserver. \r\n\r\n #. Toggle the SSH radio button to set the port to 22. (The native SSH port). \r\n\r\n #. Type a name into the 'Saved Sessions' box to save all the settings we toggle.\r\n\r\n #. Click the save button.\r\n\r\n #. There is a list of categories to the left of the putty window.\r\n\r\n #. Navigate to: ( Connection > SSH > Tunnel )\r\n\r\n #. You should be at a menu that is labeled 'Options controlling SSH port forwarding'.\r\n \r\n #. Click the 'Dynamic' radio button. \r\n\r\n #. Leave 'Destination' text box blank.\r\n \r\n #. Type '7070' into the 'Source port' text box.\r\n\r\n #. Click the 'Add' button.\r\n\r\n #. Save your configuration by going back to the 'Session' category, selecting your saved session, and pressing the 'save' button.\r\n\r\n #. Double-click your saved session.\r\n\r\n #. A black terminal window should appear.\r\n\r\n #. You will be prompted for a username and password. \r\n\r\n #. You should be greeted by the server if successful. Leave the putty window open.\r\n\r\n #. `Configure Firefox... <#configure-firefox-to-use-the-ssh-tunnel>`_\r\n\r\n\r\nSSH Tunnel created from a Linux localhost\r\n------------------------------------------------\r\n\r\n Follow this guide if your localhost (work or school) computer is Linux.\r\n\r\nCreate the tunnel\r\n~~~~~~~~~~~~~~~~~~~~~~\r\n\r\nOpen a terminal or console window, and enter the following command::\r\n\r\n ssh -ND 7070 user@remotehost_ip\r\n\r\nYou will be prompted for credentials on the remotehost. \r\n\r\nAll you need to do is login to establish the tunnel.\r\n\r\n\r\n\r\nConfigure Firefox to use the SSH Tunnel\r\n------------------------------------------\r\n\r\nSetup Socks 5 proxy.\r\n\r\n#. Open Firefox_.\r\n\r\n#. Click **Edit** -> **Preferences**\r\n\r\n#. Click the **Advanced** and **Network** tabs.\r\n\r\n#. Click the **Settings...** button.\r\n\r\n#. Click the **Manual Proxy Configuration** radio button\r\n\r\n#. In **Socks Host** type *localhost*. In port type *7070*.\r\n\r\nYou should now be able to browse the Internet using your remote connection. All data will be passed through the remote hosts internet connection. All traffic will be encrypted between the localhost and the remotehost.\r\n\r\n\r\nTunnel to multiple vnc hosts behind a firewall\r\n==============================================================\r\n\r\nssh -L [localport]:remotehost:remoteport sshuser@sshserver\r\n\r\nssh -L 31337:rhost1:5900 user@foxhop.net\r\n\r\nssh -L 31338:rhost2:5900 user@foxhop.net\r\n", "source_format": "rst", "revision_number": 3, "created": 1279911218000}, {"id": "f1dda694-2f95-11f1-b563-e86a64d24d78", "node_id": "f1dce8e3-2f95-11f1-b249-e86a64d24d78", "user_id": "edc3f576-2f95-11f1-900f-e86a64d24d78", "author": "foxhop", "data": "SSH Tunnel for HTTP Traffic\r\n==============================\r\n\r\n**Are You stuck behind a firewall?**\r\n\r\n Does your school, library, work, or parents control where you surf and what ports you have open? Do you surf on such public domains and need more privacy? Are you sick of failing proxies?\r\n\r\n If you answered 'Y' to any of these questions then this tutorial is for you.\r\n\r\n**My Story** \r\n\r\n My place of employment has a bastard firewall and it blocks nearly all ports and many great sites. (such as foxhop.net, icodeviruses.com, or youtube.com). I needed a way to get around the blocks and not get caught.\r\n\r\n\r\n.. contents:: Sections \r\n\r\nCommon Questions\r\n-------------------\r\n**What is the best way to get around a firewall?** \r\n \r\n Create an SSH tunnel from the work network to your home network.\r\n\r\n**My network administrator is smart, will I get caught?**\r\n \r\n No, you will most likely not get caught. All the firewall sees is a connection to a resource on the internet. When you browse the web using the tunnel all traffic is encrypted. If a network administrator captured packets he would only get garbage data. An SSH tunnel is basically a VPN between two computers or networks. 1337\t\r\n\r\n**Can a network admin stop a person or computer from tunneling?**\r\n \r\n The Admin will typically not know about the tunnel. From his view a tiny connection is being placed and is normally overlooked. The admin does have the ability to block the default SSH port 22. You can build your tunnel over any port.\r\n\r\nArticle Scope\r\n-------------------\r\n\r\n.. _Putty.exe: http://www.chiark.greenend.org.uk/~sgtatham/putty/download.html\r\n.. _Firefox: http://portableapps.com/apps/internet/firefox_portable\r\n\r\nWe will discuss the steps of building an SSH Tunnel for HTTP traffic between two computers on different networks. This guide will cover both windows and linux localhosts.\r\n\r\nThroughout this guide I will use the following terms, here are the definitions:\r\n\r\n*localhost*\r\n The computer at work or school.\r\n*remotehost*\r\n The computer or server that is offsite, which has the SSH server running.\r\n\r\n**What you need ...**\r\n\r\n#. Credentials to a remotehost running an SSH server. (openssh-server)\r\n#. A localhost computer crippled by a pesky network firewall.\r\n#. An SSH client, For windows get Putty.exe_\r\n#. Firefox_ ( Portable is best )\r\n\r\n**Why is this the best method?**\r\n\r\n#. Most of the configuration is done from the localhost (while at school or work).\r\n#. You don't need admin rights to run Putty.exe_, just place it on a USB drive.\r\n#. You don't need admin rights to run Firefox_ Portable, just place it on a USB drive.\r\n#. No changes need to be made on the remotehost ssh server.\r\n\r\n\r\nSSH Tunnel created from a Windows localhost\r\n-----------------------------------------------\r\n\r\n Follow this guide if your localhost (school or work) computer is Windows based.\r\n\r\nConfigure the SSH Server\r\n~~~~~~~~~~~~~~~~~~~~~~~~~~~~~\r\n The remotehost SSH server doesn't need to be configured. \r\n\r\n Just be sure its installed and running and that you have credentials to login. It just needs to be installed and running and you just need credentials.\r\n\r\n To install openSSH-server on Debian or Ubuntu linux type::\r\n\r\n sudo apt-get install ssh\r\n \r\n When I'm at work, I establish an SSH Tunnel to my remotehost webserver at home. \r\n\r\n Keep in mind that this doesn't have to be your server, you just need credentials for SSH. \r\n\r\n\r\nConfigure the SSH Client\r\n~~~~~~~~~~~~~~~~~~~~~~~~~~~\r\n #. Download Putty.exe_ if you haven't already, you should follow along.\r\n\r\n #. Double click Putty.exe_.\r\n\r\n .. image:: http://engineer.siue.edu/puttyConnectScreen.gif\r\n\r\n #. The 'Host Name (or IP address)' box should point to the SSH enabled remoteserver. \r\n\r\n #. Toggle the SSH radio button to set the port to 22. (The native SSH port). \r\n\r\n #. Type a name into the 'Saved Sessions' box to save all the settings we toggle.\r\n\r\n #. Click the save button.\r\n\r\n #. There is a list of categories to the left of the putty window.\r\n\r\n #. Navigate to: ( Connection > SSH > Tunnel )\r\n\r\n #. You should be at a menu that is labeled 'Options controlling SSH port forwarding'.\r\n \r\n #. Click the 'Dynamic' radio button. \r\n\r\n #. Leave 'Destination' text box blank.\r\n \r\n #. Type '7070' into the 'Source port' text box.\r\n\r\n #. Click the 'Add' button.\r\n\r\n #. Save your configuration by going back to the 'Session' category, selecting your saved session, and pressing the 'save' button.\r\n\r\n #. Double-click your saved session.\r\n\r\n #. A black terminal window should appear.\r\n\r\n #. You will be prompted for a username and password. \r\n\r\n #. You should be greeted by the server if successful. Leave the putty window open.\r\n\r\n #. `Configure Firefox... <#configure-firefox-to-use-the-ssh-tunnel>`_\r\n\r\n\r\nSSH Tunnel created from a Linux localhost\r\n------------------------------------------------\r\n\r\n Follow this guide if your localhost (work or school) computer is Linux.\r\n\r\nCreate the tunnel\r\n~~~~~~~~~~~~~~~~~~~~~~\r\n\r\nOpen a terminal or console window, and enter the following command::\r\n\r\n ssh -ND 7070 user@remotehost_ip\r\n\r\nYou will be prompted for credentials on the remotehost. \r\n\r\nAll you need to do is login to establish the tunnel.\r\n\r\n\r\n\r\nConfigure Firefox to use the SSH Tunnel\r\n------------------------------------------\r\n\r\nSetup Socks 5 proxy.\r\n\r\n#. Open Firefox_.\r\n\r\n#. Click **Edit** -> **Preferences**\r\n\r\n#. Click the **Advanced** and **Network** tabs.\r\n\r\n#. Click the **Settings...** button.\r\n\r\n#. Click the **Manual Proxy Configuration** radio button\r\n\r\n#. In **Socks Host** type *localhost*. In port type *7070*.\r\n\r\nYou should now be able to browse the Internet using your remote connection. All data will be passed through the remote hosts internet connection. All traffic will be encrypted between the localhost and the remotehost.\r\n\r\n\r\nTunnel to multiple vnc hosts behind a firewall\r\n==============================================================\r\n\r\nssh -L [localport]:remotehost:remoteport sshuser@sshserver\r\n\r\nssh -L 31337:ryu:5900 user@foxhop.net\r\n", "source_format": "rst", "revision_number": 2, "created": 1279909354000}, {"id": "f1dd998d-2f95-11f1-b341-e86a64d24d78", "node_id": "f1dce8e3-2f95-11f1-b249-e86a64d24d78", "user_id": "edc3f576-2f95-11f1-900f-e86a64d24d78", "author": "foxhop", "data": "SSH Tunnel for HTTP Traffic\r\n==============================\r\n\r\n**Are You stuck behind a firewall?**\r\n\r\n Does your school, library, work, or parents control where you surf and what ports you have open? Do you surf on such public domains and need more privacy? Are you sick of failing proxies?\r\n\r\n If you answered 'Y' to any of these questions then this tutorial is for you.\r\n\r\n**My Story** \r\n\r\n My place of employment has a bastard firewall and it blocks nearly all ports and many great sites. (such as foxhop.net, icodeviruses.com, or youtube.com). I needed a way to get around the blocks and not get caught.\r\n\r\n\r\n.. contents:: Sections \r\n\r\nCommon Questions\r\n-------------------\r\n**What is the best way to get around a firewall?** \r\n \r\n Create an SSH tunnel from the work network to your home network.\r\n\r\n**My network administrator is smart, will I get caught?**\r\n \r\n No, you will most likely not get caught. All the firewall sees is a connection to a resource on the internet. When you browse the web using the tunnel all traffic is encrypted. If a network administrator captured packets he would only get garbage data. An SSH tunnel is basically a VPN between two computers or networks. 1337\t\r\n\r\n**Can a network admin stop a person or computer from tunneling?**\r\n \r\n The Admin will typically not know about the tunnel. From his view a tiny connection is being placed and is normally overlooked. The admin does have the ability to block the default SSH port 22. You can build your tunnel over any port.\r\n\r\nArticle Scope\r\n-------------------\r\n\r\n.. _Putty.exe: http://www.chiark.greenend.org.uk/~sgtatham/putty/download.html\r\n.. _Firefox: http://portableapps.com/apps/internet/firefox_portable\r\n\r\nWe will discuss the steps of building an SSH Tunnel for HTTP traffic between two computers on different networks. This guide will cover both windows and linux localhosts.\r\n\r\nThroughout this guide I will use the following terms, here are the definitions:\r\n\r\n*localhost*\r\n The computer at work or school.\r\n*remotehost*\r\n The computer or server that is offsite, which has the SSH server running.\r\n\r\n**What you need ...**\r\n\r\n#. Credentials to a remotehost running an SSH server. (openssh-server)\r\n#. A localhost computer crippled by a pesky network firewall.\r\n#. An SSH client, For windows get Putty.exe_\r\n#. Firefox_ ( Portable is best )\r\n\r\n**Why is this the best method?**\r\n\r\n#. Most of the configuration is done from the localhost (while at school or work).\r\n#. You don't need admin rights to run Putty.exe_, just place it on a USB drive.\r\n#. You don't need admin rights to run Firefox_ Portable, just place it on a USB drive.\r\n#. No changes need to be made on the remotehost ssh server.\r\n\r\n\r\nSSH Tunnel created from a Windows localhost\r\n-----------------------------------------------\r\n\r\n Follow this guide if your localhost (school or work) computer is Windows based.\r\n\r\nConfigure the SSH Server\r\n~~~~~~~~~~~~~~~~~~~~~~~~~~~~~\r\n The remotehost SSH server doesn't need to be configured. \r\n\r\n Just be sure its installed and running and that you have credentials to login. It just needs to be installed and running and you just need credentials.\r\n\r\n To install openSSH-server on Debian or Ubuntu linux type::\r\n\r\n sudo apt-get install ssh\r\n \r\n When I'm at work, I establish an SSH Tunnel to my remotehost webserver at home. \r\n\r\n Keep in mind that this doesn't have to be your server, you just need credentials for SSH. \r\n\r\n\r\nConfigure the SSH Client\r\n~~~~~~~~~~~~~~~~~~~~~~~~~~~\r\n #. Download Putty.exe_ if you haven't already, you should follow along.\r\n\r\n #. Double click Putty.exe_.\r\n\r\n .. image:: http://engineer.siue.edu/puttyConnectScreen.gif\r\n\r\n #. The 'Host Name (or IP address)' box should point to the SSH enabled remoteserver. \r\n\r\n #. Toggle the SSH radio button to set the port to 22. (The native SSH port). \r\n\r\n #. Type a name into the 'Saved Sessions' box to save all the settings we toggle.\r\n\r\n #. Click the save button.\r\n\r\n #. There is a list of categories to the left of the putty window.\r\n\r\n #. Navigate to: ( Connection > SSH > Tunnel )\r\n\r\n #. You should be at a menu that is labeled 'Options controlling SSH port forwarding'.\r\n \r\n #. Click the 'Dynamic' radio button. \r\n\r\n #. Leave 'Destination' text box blank.\r\n \r\n #. Type '7070' into the 'Source port' text box.\r\n\r\n #. Click the 'Add' button.\r\n\r\n #. Save your configuration by going back to the 'Session' category, selecting your saved session, and pressing the 'save' button.\r\n\r\n #. Double-click your saved session.\r\n\r\n #. A black terminal window should appear.\r\n\r\n #. You will be prompted for a username and password. \r\n\r\n #. You should be greeted by the server if successful. Leave the putty window open.\r\n\r\n #. `Configure Firefox... <#configure-firefox-to-use-the-ssh-tunnel>`_\r\n\r\n\r\nSSH Tunnel created from a Linux localhost\r\n------------------------------------------------\r\n\r\n Follow this guide if your localhost (work or school) computer is Linux.\r\n\r\nCreate the tunnel\r\n~~~~~~~~~~~~~~~~~~~~~~\r\n\r\nOpen a terminal or console window, and enter the following command::\r\n\r\n ssh -ND 7070 user@remotehost_ip\r\n\r\nYou will be prompted for credentials on the remotehost. \r\n\r\nAll you need to do is login to establish the tunnel.\r\n\r\n\r\nConfigure Firefox to use the SSH Tunnel\r\n------------------------------------------\r\n\r\nSetup Socks 5 proxy.\r\n\r\n#. Open Firefox_.\r\n\r\n#. Click **Edit** -> **Preferences**\r\n\r\n#. Click the **Advanced** and **Network** tabs.\r\n\r\n#. Click the **Settings...** button.\r\n\r\n#. Click the **Manual Proxy Configuration** radio button\r\n\r\n#. In **Socks Host** type *localhost*. In port type *7070*.\r\n\r\nYou should now be able to browse the Internet using your remote connection. All data will be passed through the remote hosts internet connection. All traffic will be encrypted between the localhost and the remotehost.\r\n", "source_format": "rst", "revision_number": 1, "created": 1276973224000}], "count": 26}