Re: how to open ssh tunnel port ?

To: debian-user@lists.debian.org
Subject: Re: how to open ssh tunnel port ?
From: "Karl E. Jorgensen" <karl.jorgensen@nice.com>
Date: Wed, 27 Jun 2012 15:51:15 +0100
Message-id: <[🔎] 20120627145115.GB20713@hawking>
In-reply-to: <[🔎] 20120627200730.7892ec0a@shiva.selfip.org>
References: <[🔎] 20120627200730.7892ec0a@shiva.selfip.org>

On Wed, Jun 27, 2012 at 03:37:30PM +0100, J. Bakshi wrote:
> 
> Dear list,
> 
> I have made a successful ssh tunnel between two pcs A and B.
> A is running mysql and B have the tunnel with A , so that B
> can access that remote mysql with its local port 3360. Everything
> is fine......
> 
> But B is bind the port with localhost only, hence no one can access
> B's 3360 port. How can B open the port so that others can also
> use the 3360 port on B which is actually tunneled with A ?
> 
> <A running mysql> ------tunnel-----<B localhost:3360>
> but <c> can't see 3360 on <B>

>From the ssh man page:

     -L [bind_address:]port:host:hostport

or alternatively: use the -g option..

But...

It sounds like you're using this to bypass a firewall somewhere? If
so, beware: MySQL traffic is NOT encrypted so any usernames/passwords
sent to mysql are easily exposed.  And there's bound to be security
vulnerabilities in the MySQL protocol too - it is not designed to be
hardened.

Also: As far as MySQL is concerned, the connection will appear to come
from B - mysql will never see the true source of connections.

Hope this helps
-- 
Karl E. Jorgensen

Reply to:

References:
- how to open ssh tunnel port ?
  - From: "J. Bakshi" <bakshi12@gmail.com>

Prev by Date: Re: how to increase through put of LAN to 1GB
Next by Date: Re: which tftp server supports IPv6
Previous by thread: how to open ssh tunnel port ?
Next by thread: Re: how to open ssh tunnel port ?
Index(es):
- Date
- Thread