[PLUG] Linux networking question
Robert Anderson
riznob at gmail.com
Thu Dec 29 18:42:40 UTC 2005
On 12/29/05, Robert Anderson <riznob at gmail.com> wrote:
>
>
>
> On 12/28/05, Matt Alexander <lowbassman at gmail.com> wrote:
> >
> > Here's the situation...
> >
> > I have a box outside my network that has only SSH access
> > available. This
> > box is running Squid. Computer "A" on my network is only allowed to SSH
> > to
> > this remote box, "R". I then setup an SSH tunnel from "A" to "R" with
> > this
> > command:
> >
> > ssh -f -N -L 3128:localhost:3128 user at server.tld
> >
> > So far so good. Computer "A" can browse the web through Squid on "R".
> >
> > Now, I have Computer "B" that cannot reach "R", but I'd like to pass the
> >
> > traffic through "A". So on "A" I created the following tunnel to listen
> > locally on 3129 and redirect to the other tunnel on 3128:
> >
> > ssh -f -N -L 3129:localhost:3128 user at 127.0.0.1
> >
> > Then on "B", I created this tunnel:
> >
> > ssh -f -N -L 3129:localhost:3129 user at computerA
> >
> > So far so good. On "B", I can telnet to localhost on port 3129 and I
> > get
> > Squid responding from "R".
> >
> > Now, I want to transparently redirect any outgoing port 80 traffic on
> > computer "B" to travel through these tunnels to Squid on "R". I've been
> > fumbling around with iptables for a while now to redirect outgoing port
> > 80
> > traffic to 127.0.0.1:3129, but no luck. While you're pondering that,
> > I'll
> > continue reading the netfilter docs...
> >
> > Thanks,
> > ~M
> > _______________________________________________
> > PLUG mailing list
> > PLUG at lists.pdxlinux.org
> > http://lists.pdxlinux.org/mailman/listinfo/plug
> >
>
> This should be as simple as setting the browser proxy settings on B to
> A:3129
>
> --
> Rob Anderson
> riznob at gmail.com
Or rather localhost:3129
--
Rob Anderson
riznob at gmail.com
More information about the PLUG
mailing list