For some reason I never considered an SSH tunnel, which is what I do to get into my computers at home from work. Duh
Anyway, that's what I ended up doing, the admin was nervous about my poking a hole in the firewall even on a non-standard port for a short time, so this way will keep him happy and is probably a better idea anyway. -- John D. Mort http://john.mort.net On Fri, May 9, 2008 at 10:36 AM, Mike Kershaw <[EMAIL PROTECTED]> wrote: > On Fri, May 09, 2008 at 09:37:25AM -0400, John Mort wrote: >> What I'd like to do is ssh into the Fedora machine, and modify the >> iptables to forward incoming traffic on port 9999 to my work computer >> on port 3389 (Windows Remote Desktop port). The idea being that I >> could then use terminal server client against the Fedora machines >> internet IP on port 9999 and have it bring up my desktop at work. >> Then when I'm done just remove the modification to iptables to close >> the hole. >> >> The only part of this plan I don't know how to accomplish is step 2. >> I've made several attempts but can't seem to figure out the correct >> iptables command. Is what I'm trying to do possible? Is iptables the >> right tool for the job here? > > The other trick you can do is SSH tunneling. > > ssh -L 3389:windows-internal-ip:3389 [EMAIL PROTECTED] > > then rdesktop to localhost 3389. > > You could also do something like > > ssh -D 9999 [EMAIL PROTECTED] > > to make a socks5 dynamic proxy over ssh, then use 'tsocks' or 'socksify' > to wrap rdesktop so that it uses socks... > > tsocks rdesktop windows-internal-ip > > You can also do port forwarding with Putty, so you can even do this from > inside windows. > > Nothing wrong with iptables, either, and chris has you covered on that > answer, just offering my $0.02 - I like ssh tunneling for anything > that's just for me, not the world, because it only opens a hole in the > firewall for me, not... the world. :) > > -m > > -- > Mike Kershaw/Dragorn <[EMAIL PROTECTED]> > GPG Fingerprint: 3546 89DF 3C9D ED80 3381 A661 D7B2 8822 738B BDB1 > > "Hostility towards Microsoft is not difficult to find on the Net, and it > blends two strains: resentful people who feel Microsoft is too powerful, > and disdainful people who think it's tacky. This is all strongly reminiscent > of the heyday of Communism and Socialism, when the bourgeoisie were hated > from both ends: by the proles, because they had all the money, and by the > intelligentsia, because of their tendency to spend it on lawn ornaments." > -- Neal Stephenson > > _______________________________________________ > Mid-Hudson Valley Linux Users Group http://mhvlug.org > http://mhvlug.org/cgi-bin/mailman/listinfo/mhvlug > Upcoming Meetings (6pm - 8pm) MHVLS Auditorium > Jun 4 - Sqeak! and eToys > Jul 2 - KVM (Tenative) > Aug 6 - Zenos > Sep 3 - TBD > > _______________________________________________ Mid-Hudson Valley Linux Users Group http://mhvlug.org http://mhvlug.org/cgi-bin/mailman/listinfo/mhvlug Upcoming Meetings (6pm - 8pm) MHVLS Auditorium Jun 4 - Sqeak! and eToys Jul 2 - KVM (Tenative) Aug 6 - Zenos Sep 3 - TBD
