Logo Questions Linux Laravel Mysql Ubuntu Git Menu
HTML CSS JAVASCRIPT SQL PYTHON PHP BOOTSTRAP JAVA JQUERY R React Kotlin
 

Connecting to host by SSH client in Linux by proxy [closed]

Tags:

linux

ssh

proxy

ubuntu-12.10

I am really struggling with this.

My host (A) is behind a proxy/firewall (PF) and needs to connect to host H.

The proxy has HTTP/FTP/SOCK proxy configured and I have no issue to configure in web browser, wget etc.

But when I use... 

ssh H //to connect my host

I have no success to pass over the proxy. It seems to try to connect directly instead of going via the PF.

I am using Ubuntu 12.10.

like image 221
Agus Avatar asked Mar 22 '13 18:03

Agus

People also ask

Can you SSH through a proxy?

You need an SSH client that can issue CONNECT requests through the company HTTP proxy. If you're on Windows, using Putty is fine as it has built-in support for tunneling through a HTTP proxy. If you're on unix/linux (or cywgin) you can use openssh with corkscrew to go through the proxy to your home computer's port 443.

What is SSH proxy command?

The ProxyCommand itself is a specific command used to connect to a remote server—in the case of the earlier example, that would be the manual ssh command used to first connect to the bastion: $ ssh -o ProxyCommand="ssh -W %h:%p bastion-host" remote-host.

What is W option in SSH?

The -W option ensures that the connection is forwarded over the secure channel and just passes through the jump host without being decrypted. The jump host must both be able to do the DNS look up for LAN names as well as have an SSH client available.

What is SSH jump host?

From Gentoo Wiki. An alternative to SSH tunneling to access internal machines through gateway is using jump hosts. The idea is to use ProxyCommand to automatically execute ssh command on remote host to jump to the next host and forward all traffic through.

2 Answers

There are several ways to do it. You can use nc or try wrappers like corkscrew. I'll describe way with wrapeer:

Firstly install corkscrew by apt-get
Then you need to specify ProxyCommand in your ./ssh/config file (replace example-proxy.com and 8080 with your proxy host and port): 

Host *
  ProxyCommand corkscrew example-proxy.com 8080 %h %p ~/.ssh/proxyauth

Your login credentials should be in ~/.ssh/proxyauth in format:

login:password
like image 71
Oleg S Kleshchook Avatar answered Sep 21 '22 17:09

Oleg S Kleshchook

Check the docs for the ssh ProxyCommand option. You can specify a command to run (for example, nc) to connect to a given host and port. For example, adding this to your .ssh/config might work to traverse a SOCKS5 proxy:

ProxyCommand nc -x MY_PROXY_HOST:MY_PROXY_PORT %h %p

More detailed instructions are going to depend on your environment.

like image 33
Andy Ross Avatar answered Sep 21 '22 17:09

Andy Ross
Sign in to Comment

Related questions

How to build 32bit python 2.6 on 64bit Linux?
How to enable large file support under Darwin?
How do I send UDP packet from a specific interface on Linux?
memory safety for encrypted, sensitive data
How many system calls are there in linux kernel 2.6?
Calculating user, nice, sys, idle, iowait, irq and sirq from /proc/stat
bind with INADDR_ANY
Copy n bytes of data x to file
See what process last touched a file
Why is depmod necessary for building and working with kernel modules?
I got error in run time that "Cannot assign requested address" in C under Linux (Centos)
How can I trap a signal (`SIGPIPE`) for a socket that closes?
How to find definition of structure when reading c program on linux?
How to create a file only if it doesn't exist?
How to broadcast Message using UDP sockets locally?
How to find if a process is running in C?
Valgrind does not show line-numbers
Fork child process with timeout and capture output
listen() queue length in socket-programing in c?
Which "fatal" signals should a user-level program catch?

Donate For Us

If you love us? You can donate to us via Paypal or buy me a coffee so we can maintain and grow! Thank you!