Is there a reverse Network Address Translation???
Hi, I wan't to access my pc at work from home through freebsd's sshd. Is it possible?, knowing that it doesn't have a public ip address? That workstation of mine is only gaining internet access through LAN servers and routers. Will it help if I know the gateway ip where my workstation passes through and the proxy as well as dns server's ip's? I know its possible but I can't imagine the process, perhaps something like a reverse network address translation... Any idea? Thanks-- :-) ___ Do you Yahoo!? Declare Yourself - Register online to vote today! http://vote.yahoo.com ___ [EMAIL PROTECTED] mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Re: Is there a reverse Network Address Translation???
On Thu, 30 Sep 2004 02:54:58 -0700 (PDT) Mark Jayson Alvarez [EMAIL PROTECTED] wrote: Hi, I wan't to access my pc at work from home through freebsd's sshd. Is it possible?, knowing that it doesn't have a public ip address? That workstation of mine is only gaining internet access through LAN servers and routers. Will it help if I know the gateway ip where my workstation passes through and the proxy as well as dns server's ip's? I know its possible but I can't imagine the process, perhaps something like a reverse network address translation... Any idea? man natd and see redirect_* -- IOnut Unregistered ;) FreeBSD user ___ [EMAIL PROTECTED] mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Re: Is there a reverse Network Address Translation???
It was said: I wan't to access my pc at work from home through freebsd's sshd. Is it possible?, knowing that it doesn't have a public ip address? That workstation of mine is only gaining internet access through LAN servers and routers. Will it help if I know the gateway ip where my workstation passes through and the proxy as well as dns server's ip's? I know its possible but I can't imagine the process, perhaps something like a reverse network address translation... Any idea? Hello, Yes, this is possible. From home, you would ssh to your work's external IP address. You don't specify the setup you have at work, but at a minimum you need to have fowarding rules setup in the company's firewall to direct your ssh connection to your workstation. Obviously, if you can ssh in, so can anyone else. Be sure you use a _very_ good password. HTH, Stheg __ Do You Yahoo!? Tired of spam? Yahoo! Mail has the best spam protection around http://mail.yahoo.com ___ [EMAIL PROTECTED] mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Re: Is there a reverse Network Address Translation???
stheg olloydson wrote: It was said: I wan't to access my pc at work from home through freebsd's sshd. Is it possible?, knowing that it doesn't have a public ip address? That workstation of mine is only gaining internet access through LAN servers and routers. Will it help if I know the gateway ip where my workstation passes through and the proxy as well as dns server's ip's? I know its possible but I can't imagine the process, perhaps something like a reverse network address translation... Any idea? Hello, Yes, this is possible. From home, you would ssh to your work's external IP address. You don't specify the setup you have at work, but at a minimum you need to have fowarding rules setup in the company's firewall to direct your ssh connection to your workstation. Obviously, if you can ssh in, so can anyone else. Be sure you use a _very_ good password. Would using a public/private key not be better? Any password would still be guessable. Jim Mozley ___ [EMAIL PROTECTED] mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Re: Is there a reverse Network Address Translation???
It was said: Obviously, if you can ssh in, so can anyone else. Be sure you use a _very_ good password. Would using a public/private key not be better? Any password would still be guessable. Jim Mozley Hello, Most certainly! I was taking into account the OP's relative newness to the unix world. While it may seem condescending, I find newer users tend to get overwhelmed when more experienced users try to supply an exhaustive answer. For example, bringing up PKI would almost certainly lead to a discussion of algorithm choice, etc. The result in these cases often is the new user drops out of the thread (and does whatever) while the old hands bikeshed what must seem like (and sometimes is) arcane minutiae. As the OP uses ssh, he will learn more about it and ask deeper questions. In the meantime, his network is relatively safe. He asked about ssh not telnet, after all. Understand, this is just my personal philosophy, which makes it as valid or invalid as anyone else's. I'm not saying it is The Right Way(tm) - even though it is ;). Regards, Stheg __ Do you Yahoo!? Yahoo! Mail is new and improved - Check it out! http://promotions.yahoo.com/new_mail ___ [EMAIL PROTECTED] mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Re: Is there a reverse Network Address Translation???
On Thursday, September 30, 2004 stheg olloydson [EMAIL PROTECTED] spoke as if he was talking about me. snip Most certainly! I was taking into account the OP's relative newness to the unix world. While it may seem condescending, I find newer users tend to get overwhelmed when more experienced users try to supply an exhaustive answer. For example, bringing up PKI would almost certainly lead to a discussion of algorithm choice, etc. The result in these cases often is the new user drops out of the thread (and does whatever)while the old hands bikeshed what must seem like (and sometimes is) arcane minutiae. I have been using FreeBSD for about 10 months as a hobbyist/learning tool. I lurk on the lists to pick up pointers and solve my own little problems. Because I am retired and am only a hobyist, I do exactly as Stheg has indicated above. I will start reading a thread to learn something new or it may be something on my list of features/programs in my future agenda. When it gets too deep for my knowledge level, I will drop out and try to make a mental note that it will always be in the archives. In the time I started with FreeBSD, I have installed it on 4 desktops and 2 laptops. I am running 5.3betas on 3 boxes and 5.2.1P9 on the others. I have solved many of my troubles by lurking and have asked the list a few questions. I have always received polite, helpful responses even if they did not solve my troubles. More times than not, I will solve the problems by research rather than sending to questions. One needs a strong base to build a large pyramid of knowledge. If I were allowed to issue karma points, I would give a couple of dozen to Stheg. Just my 2 seashells Robert ___ [EMAIL PROTECTED] mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Re: Is there a reverse Network Address Translation???
Mark Jayson Alvarez wrote: Hi, I wan't to access my pc at work from home through freebsd's sshd. Is it possible?, knowing that it doesn't have a public ip address? That workstation of mine is only gaining internet access through LAN servers and routers. Will it help if I know the gateway ip where my workstation passes through and the proxy as well as dns server's ip's? I know its possible but I can't imagine the process, perhaps something like a reverse network address translation... Any idea? I think you would need to have the public IP LAN server/router ready, willing, and able to port-forward SSH packets to your personal workstation. Your work IT Administrator may, or may not, be willing to set this up for you. If *YOU* control the public-IP LAN gear at work, you need to set them up to port-forward anything on some port that the public-IP LAN gear isn't using to your desktop workstation. You'd think that SSH needs port 22, but if that's already in use, you can: 1. Configure the public-IP to accept/forward port 222 (or whatever) to your desktop workstation. 2. Configure sshd on the desktop workstation to accept traffic on 222 and use sshd to handle that traffic. 3. Use ssh -p 222 [EMAIL PROTECTED] at home to log in to the desktop at work. The PUBLIC IP box gets the connection on 222, forwards it to your desktop, and you're in like Flynn. If the PUBLIC IP is dynamic (IE, cable modem, DSL, etc) you can also set up software to create a valid domain name for it using something like: http://dyndns.org or one of a few dozen other similar services. In that case, you'd install a small client on the PUBLIC IP box which will notify the DynDNS folks whenever your IP changes, then they update the DNS routing tables for you, and Whammo! you don't really care that your IP is dynamic because they tied a domain name to it for you. If you can't alter the PUBLIC IP LAN gear at work, then I don't think you can manage to ssh in to your desktop box. -- Like Music? http://l-i-e.com/artists.htm ___ [EMAIL PROTECTED] mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]