how to get the right commands for a remote ssh session (attachment situation)

To: debian-user@lists.debian.org
Subject: how to get the right commands for a remote ssh session (attachment situation)
From: Jelle de Jong <jelledejong@powercraft.nl>
Date: Mon, 27 Oct 2008 15:37:38 +0100
Message-id: <[🔎] 4905D232.2030305@powercraft.nl>

-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1

Hello everybody,

I have been trying to create some sh tunneling commands that would allow
me to create a ssh session to a machine behind an firewall/nat from a
machine behind a firewall/nat but with a public server in between. I
have spent a day trying to figure things out but without success. So I
wanted to ask for some help to get the right command...

I have added an attachment with ASCII art that should hopefully explain
my situation and what I would like to do.

I would be very thankful if somebody could help me getting a solution.
Would somebody be willing to help?

Thanks in advance,

Jelle
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.9 (GNU/Linux)
Comment: Using GnuPG with Mozilla - http://enigmail.mozdev.org

iJwEAQECAAYFAkkF0jAACgkQ1WclBW9j5HnslgP/coxh+iMHfB8hcTljrWPMfnYD
cQLm3G6EMlBd+lJC9RvFJsFmKT22JlmKZ8MySJU8PmoPGltVCpTxwbMofULvgmYf
mAIm5zfKl0iOEsooaSD7o7sh+Kc8X/EGTT4vl+hrio/XGD8m1Geq5M920Y5dKu8d
ROK/xmDZdHJIEkHjoTA=
=9hWv
-----END PGP SIGNATURE-----

question: how can admin0 and admin1 get a ssh session with user0 to provide remote support?

what are the exact ssh commands and there sequences for user0, admin0 and admin1?

+----------------+        +----------+        +--------------+        +----------+
| user0          |--------| firewall |--------| internet www |--------| firewall |
| ip: unknown    |        +----------+        +--------------+        +----------+
| ssh access to: |                                    |                     |
| server0        |                              +----------+      +---------------------+
+----------------+                              | firewall |      | server0             |
                                                +----------+      | ip: 84.245.3.195    |
+----------------+                                    |           | provided access to: |
| admin0         |------------------------------------+           | user0               |
| ip: unknown    |                                                | admin0              |
| ssh access to: |                                                | admin1              |
| server0        |                                                +---------------------+
+----------------+                                                          |
                                                                            |
+----------------+                                                          |
| admin1         |----------------------------------------------------------+
| ip: unknown    |
| ssh access to: |
| server0        |
+----------------+

All systems are using Debian Linux sid or lenny, and no firewall can be
changed so only outgoing connection are allowed with exception of the
firewall of server0

------------------------------------------------------------------------

#!/bin/bash

# command script for user0

...

exit

------------------------------------------------------------------------

#!/bin/bash

# command script for admin0

...

exit

------------------------------------------------------------------------

#!/bin/bash

# command script for admin1

...

exit

------------------------------------------------------------------------


# notes:
http://www.debianadmin.com/howto-use-ssh-local-and-remote-port-forwarding.html

Reply to:

Follow-Ups:
- Re: how to get the right commands for a remote ssh session (attachment situation)
  - From: Florian Kulzer <florian.kulzer+debian@icfo.es>

Prev by Date: Re: searching for rebuild daemon?
Next by Date: Re: Debsums fun
Previous by thread: Re: Snort (debian (etch) always ago)
Next by thread: Re: how to get the right commands for a remote ssh session (attachment situation)
Index(es):
- Date
- Thread