At least one problem may be that FTP actually uses two connections, one on port 21 (for commands) and one on port 20 (for the file data for PUT and GET). Try ssh -L 20:<ipaddr>:20 -L 21:<ipaddr>:21 ... You may also need to try passive mode instead of active (changes which end of the connection is responsible for opening the secondary connections).
tw
On 04/18/2002 11:16 -0600, Jeff Murray wrote:
>> I am trying to tunnel protocols through SSH. I can successfully create and
>use a tunnel with this configuration:
>>
>> Int Machine ---NAT---> Firewall ----> DMZ Server
>>
>> However whenever I try to tunnel to a machine that is behind another firewall
>and layer of NAT I get timeout errors.
>>
>> Int Machine ---NAT---> Firewall ----Internet----> Firewall ---NAT---> Server
>>
>> I am able to SSH to the server through both firewalls and it appears as though
>the tunnel has been created (e.g. SSH -L
>> 21:xxx.xxx.xxx.xxx:21 [EMAIL PROTECTED] connects and gives me ssh access).
>However, whatever protocol (FTP localhost in the
>> example above) I try to tunnel times out. I am using the same commands in
>both scenarios. Why would the first scenario work and
>> the second not work? Any suggestions?
>>
>> Jeff
End of included message
--
[EMAIL PROTECTED]
msg06004/pgp00000.pgp
Description: PGP signature
