RE: Questions on Transparent Tunneling

Wed, 23 Oct 2013 13:25:45 -0700 

Hi,
For logging -  OpenSSH Logging and SysLog Forwarding may be an option.

Saju
-----Original Message-----
From: Jeremy Brock [mailto:[email protected]] 
Sent: Wednesday, October 23, 2013 4:09 PM
To: [email protected]
Subject: Re: Questions on Transparent Tunneling

Hi Aris,

     Actually the SSH Client IP is exactly what I am after!  How can I force 
the Openssh server to use the SSH Client IP when forwarding the tunnel traffic 
to itself?

~Jeremy

-- 

Jeremy Brock

Vital Soft, Inc
www.vital-soft.com

On 10/23/2013 1:00 PM, Aris Adamantiadis wrote:
> Hi,
>
> I think what you want is not possible. The originating IP address of 
> your tunnel will always be either the SSH client or the SSH server 
> depending on the direction of the proxying. It would be very hard to 
> change that information because it is not supposed to be tamperable 
> (Inside the OS' kernel).
>
> I think your question is worth asking on a more general mailing list, 
> I'm afraid libssh is of no use for what you need.
>
> Regards,
>
> Aris
> Le 23/10/13 21:32, Jeremy Brock a écrit :
>> Hi Aris,
>>
>>      Please forgive my ignorance, I am new to the ssh tunneling 
>> terminology.  I am trying to setup a tunnel from a windows client 
>> running Putty (or other openssh client) to an HPUX host running 
>> openssh.  I would like to pass plain text traffic across the tunnel 
>> to the HPUX server while preserving the client IP when the port 
>> forwarding is done at the HPUX side to itself (since it is the destination).
>>
>>      I am currently able to tunnel with the following in putty, but 
>> unable to preserve my client IP when the forwarding occurs on the 
>> HPUX host :
>>
>>
>>
>>
>> ~Jeremy
>>
>> --
>>
>> Jeremy Brock
>>
>> Vital Soft, Inc
>> www.vital-soft.com
>>
>> On 10/23/2013 12:07 PM, Aris Adamantiadis wrote:
>>> Hi,
>>>
>>> I don't understand what you want. SSH supports tcp forwarding, and 
>>> yes there's some metadata transfered about origin of the connection. 
>>> (I guess you speak of ssh -R behaviour).
>>>
>>> Aris
>>>
>>> Le 23/10/13 18:35, Jeremy Brock a écrit :
>>>> Hi All,
>>>>
>>>>      Is possible with libssh, or openssh for that matter, to have a 
>>>> transparent tcp tunnel where the forwarded port traffic across the 
>>>> tunnel keeps intact the remote client ip address when received on 
>>>> the server side for logging purposes etc?
>>>>
>>>>      Thx!
>>>>
>>>>      ~Jeremy
>>>>
>

Reply via email to