Sorry about the delay. The socks proxy is not available in 0.13.0, but has been added to the upcoming 0.14.0. Feel free to give it a try. I've uploaded a snapshot at
https://repository.apache.org/content/groups/snapshots/org/apache/sshd/sshd-core/0.14.0-SNAPSHOT/ 2015-01-16 0:38 GMT+01:00 Alberto Garcia <[email protected]>: > Hi. > > I am using Mina to do start a ssh server. I am using it to establish a ssh > reverse connection. So the infrastructure that I have is: > > 1)* Server A* running a normal SSH server on port 22 > 2) A Java app that has two functionalities: *First one* is creating an SSH > server with the mina libraries. It just listen to localhost *Second one* is > doing a reverse SSH connection to the server with harcoded credentials. > > Everything works fine and I get the connection in the server A and I can do > ssh localhost -p [LOCALPORT] and I get the shell. > > But now what I want to use is set up a port in the server A to use SOCKS5 > to browse the internet as being in the IP where the app has been executed. > To do so I do: ssh -vvv -f -D 0.0.0.0:8080 localhost -p 11707 -N (being > 11707 the local port bind in Server A) > > The port 8080 gets bind but I can't browse through it. I get this output in > the server A: > > debug1: Connection to port 8080 forwarding to socks port 0 requested. > debug2: fd 5 setting TCP_NODELAY > debug2: fd 5 setting O_NONBLOCK > debug3: fd 5 is O_NONBLOCK > debug1: channel 1: new [dynamic-tcpip] > debug2: channel 1: pre_dynamic: have 0 > debug2: channel 1: pre_dynamic: have 4 > debug2: channel 1: decode socks5 > debug2: channel 1: socks5 auth done > debug2: channel 1: pre_dynamic: need more > debug2: channel 1: pre_dynamic: have 0 > debug2: channel 1: pre_dynamic: have 25 > debug2: channel 1: decode socks5 > debug2: channel 1: socks5 post auth > debug2: channel 1: dynamic request: socks5 host www.cualesmiip.com > port 80 command 1 > channel 1: open failed: administratively prohibited: Connection denied > debug2: channel 1: zombie > debug2: channel 1: garbage collecting > debug1: channel 1: free: direct-tcpip: listening port 8080 for > www.cualesmiip.com port 80, connect from 4.174.29.15 port 50879, > nchannels 2 > debug3: channel 1: status: The following connections are open: > > > And I get this in the mina server that is running in the system where I > execute the app: > INFO: Receiving request for direct tcpip: hostToConnect=www.cualesmiip.com > , > portToConnect=80, originatorIpAddress=204.14.239.215, originatorPort=50879 > ene 14, 2015 2:33:33 PM org.apache.sshd.common.forward.TcpipServerChannel > doInit > > I guess that the problem is that the mina server is not finishing his part > because it seems that server A is correctly forwarding the info to the mina > server. > I saw that some code something related to that: > > https://github.com/apache/mina-sshd/commit/4b7a87f1a887c82e1f324856e82d47d89d5f1968 > > Do I need to add something to my setup in the Java code to have that > working? I am using mina version sshd-core-0.12.0. I couldn't find the > version 13. Is that functionality implemented in the version 13?? > > Here you can find the java code I wrote to do all this: > http://pastebin.com/Yv9NfejQ > > > Thank you for your help and don't hesitate to contact me if you need more > info. > > -- > Alberto GarcĂa >
