Re: [mhvlug] Port Forwarding Question

Fri, 09 May 2008 07:37:14 -0700 

On Fri, May 09, 2008 at 09:37:25AM -0400, John Mort wrote:
> What I'd like to do is ssh into the Fedora machine, and modify the
> iptables to forward incoming traffic on port 9999 to my work computer
> on port 3389 (Windows Remote Desktop port).  The idea being that I
> could then use terminal server client against the Fedora machines
> internet IP on port 9999 and have it bring up my desktop at work.
> Then when I'm done just remove the modification to iptables to close
> the hole.
> 
> The only part of this plan I don't know how to accomplish is step 2.
> I've made several attempts but can't seem to figure out the correct
> iptables command.  Is what I'm trying to do possible? Is iptables the
> right tool for the job here?

The other trick you can do is SSH tunneling.

ssh -L 3389:windows-internal-ip:3389 [EMAIL PROTECTED]

then rdesktop to localhost 3389.

You could also do something like

ssh -D 9999 [EMAIL PROTECTED]

to make a socks5 dynamic proxy over ssh, then use 'tsocks' or 'socksify'
to wrap rdesktop so that it uses socks...

tsocks rdesktop windows-internal-ip

You can also do port forwarding with Putty, so you can even do this from
inside windows.

Nothing wrong with iptables, either, and chris has you covered on that
answer, just offering my $0.02 - I like ssh tunneling for anything
that's just for me, not the world, because it only opens a hole in the
firewall for me, not... the world. :)

-m

-- 
Mike Kershaw/Dragorn <[EMAIL PROTECTED]>
GPG Fingerprint: 3546 89DF 3C9D ED80 3381  A661 D7B2 8822 738B BDB1

"Hostility towards Microsoft is not difficult to find on the Net, and it 
blends two strains: resentful people who feel Microsoft is too powerful, 
and disdainful people who think it's tacky. This is all strongly reminiscent 
of the heyday of Communism and Socialism, when the bourgeoisie were hated 
from both ends: by the proles, because they had all the money, and by the 
intelligentsia, because of their tendency to spend it on lawn ornaments."
                       -- Neal Stephenson

Attachment: pgpWZwJRDK84l.pgp
Description: PGP signature

_______________________________________________
Mid-Hudson Valley Linux Users Group                  http://mhvlug.org          
   
http://mhvlug.org/cgi-bin/mailman/listinfo/mhvlug                           
Upcoming Meetings (6pm - 8pm)                         MHVLS Auditorium          
        
  Jun 4 - Sqeak! and eToys
  Jul 2 - KVM (Tenative)
  Aug 6 - Zenos
  Sep 3 - TBD

Reply via email to