[Nottingham] Dealing with a router that does not support Port Forwarding

Jason Irwin jasonirwin73 at gmail.com
Fri May 8 16:44:46 UTC 2015


On 07/05/15 13:43, Mike Cardwell wrote:
> If you run this from your Pi:
>    ssh -R 12345:127.0.0.1:22 some.other.host
> Then any machine on "some.other.host" will be able to ssh in to your
> Pi by doing:
>    ssh -p 12345 127.0.0.1
> It is very much worth adding the ssh options -L, -R and -D to your
> repertoire if you want to be able to punch holes through firewalls
> and NAT.

Thanks! That was the exact thing (along with adding "GatewayPorts yes"
to "sshd_config").

Now just to decide how to secure the thing.
Add fail-to-ban...
Maybe even VM...

Never a simple job, is it?
And a pox upon routers that don't support port forwarding!

-- 
╔═════════════╦══════════════════════════════════════════╗
║ Jason Irwin ║ OpenPGP (GPG/PGP) Public Key: 0xD0C592B1 ║
║             ║ Import from hkp://pgp.mit.edu            ║
╚═════════════╩══════════════════════════════════════════╝



More information about the Nottingham mailing list