[TLUG] Dynamic Port Forwarding w SSH

Tomasz Bakiera tlug at linux.gda.pl
Fri, 30 Nov 2007 15:06:55 +0000


Wednesday 21 of November 2007 16:01:14 Marcin Sochacki napisał(a):
> > No i chodzi o to że Firefox jest też dobrze skonfigurowany, także
> > już zgłupiałem. Szkoda, bo nie bardzo wiem gdzie już szukać. =
Grupa była
> > ostatnia deską ratunku.
>
> Interesuje mnie jeszcze co dokładnie pokazuje ssh -v jak się łącz=
ysz z
> jakąś stroną. Ja mam nieco inne logi niż u Ciebie, chyba że wyc=
iąłeś
> część linii:
>
> debug1: channel 2: new [dynamic-tcpip]
> debug1: channel 2: free: direct-tcpip: listening port 9000 for
> 212.77.100.101 port 80, connect from 127.0.0.1 port 55578, nchannels 3
> debug1: Connection to port 9000 forwarding to socks port 0 requested.
> debug1: channel 2: new [dynamic-tcpip]
> debug1: Connection to port 9000 forwarding to socks port 0 requested.
> debug1: channel 3: new [dynamic-tcpip]
> debug1: channel 2: free: direct-tcpip: listening port 9000 for
> 212.77.100.101 port 80, connect from 127.0.0.1 port 55579, nchannels 4
> debug1: channel 3: free: direct-tcpip: listening port 9000 for
> 212.77.100.101 port 80, connect from 127.0.0.1 port 55580, nchannels 3
>
> Wanted
Oto początek logowania:

OpenSSH_4.7p1, OpenSSL 0.9.8g 19 Oct 2007
debug1: Reading configuration data /home/smok/.ssh/config
debug1: Applying options for komputer.docelowy.ip
debug1: Reading configuration data /etc/ssh/ssh_config
debug1: Executing proxy command: exec /usr/bin/corkscrew 194.203.189.16 8080 
komputer.docelowy.ip 443  ~/.ssh/haslo_proxy
debug1: permanently_drop_suid: 1000
debug1: identity file /home/smok/.ssh/identity type -1
debug1: identity file /home/smok/.ssh/id_rsa type -1
debug1: identity file /home/smok/.ssh/id_dsa type -1
debug1: Remote protocol version 2.0, remote software version OpenSSH_4.3p2 
Debian-8ubuntu1
debug1: match: OpenSSH_4.3p2 Debian-8ubuntu1 pat OpenSSH*
debug1: Enabling compatibility mode for protocol 2.0
debug1: Local version string SSH-2.0-OpenSSH_4.7
debug1: SSH2_MSG_KEXINIT sent
debug1: SSH2_MSG_KEXINIT received
debug1: kex: server->client aes128-cbc hmac-md5 none
debug1: kex: client->server aes128-cbc hmac-md5 none
debug1: SSH2_MSG_KEX_DH_GEX_REQUEST(1024<1024<8192) sent
debug1: expecting SSH2_MSG_KEX_DH_GEX_GROUP
debug1: SSH2_MSG_KEX_DH_GEX_INIT sent
debug1: expecting SSH2_MSG_KEX_DH_GEX_REPLY
debug1: Host '[komputer.docelowy.ip]:443' is known and matches the RSA host 
key.
debug1: Found key in /home/smok/.ssh/known_hosts:1
debug1: ssh_rsa_verify: signature correct
debug1: SSH2_MSG_NEWKEYS sent
debug1: expecting SSH2_MSG_NEWKEYS
debug1: SSH2_MSG_NEWKEYS received
debug1: SSH2_MSG_SERVICE_REQUEST sent
debug1: SSH2_MSG_SERVICE_ACCEPT received
debug1: Authentications that can continue: publickey,password
debug1: Next authentication method: publickey
debug1: Trying private key: /home/smok/.ssh/identity
debug1: Trying private key: /home/smok/.ssh/id_rsa
debug1: Trying private key: /home/smok/.ssh/id_dsa
debug1: Next authentication method: password
tomek@komputer.docelowy.ip's password:
debug1: Authentication succeeded (password).
debug1: Local connections to LOCALHOST:8080 forwarded to remote address 
socks:0
debug1: Local forwarding listening on 127.0.0.1 port 8080.
debug1: channel 0: new [port listener]
socket: Address family not supported by protocol
debug1: Local connections to localhost:4001 forwarded to remote address 
localhost:4001
debug1: Local forwarding listening on 127.0.0.1 port 4001.
debug1: channel 1: new [port listener]
socket: Address family not supported by protocol
debug1: Local connections to localhost:3110 forwarded to remote address 
poczta.interia.pl:110
debug1: Local forwarding listening on 127.0.0.1 port 3110.
debug1: channel 2: new [port listener]
socket: Address family not supported by protocol
debug1: Local connections to localhost:3025 forwarded to remote address 
poczta.interia.pl:25
debug1: Local forwarding listening on 127.0.0.1 port 3025.
debug1: channel 3: new [port listener]
socket: Address family not supported by protocol
debug1: channel 4: new [client-session]
debug1: Entering interactive session.
Linux via 2.6.21-gentoo-r4-via #4 Sun Aug 12 20:50:02 CEST 2007 i686

The programs included with the Ubuntu system are free software;
the exact distribution terms for each program are described in the
individual files in /usr/share/doc/*/copyright.

Ubuntu comes with ABSOLUTELY NO WARRANTY, to the extent permitted by
applicable law.
Last login: Fri Nov 30 14:03:15 2007 from endeavourhouse.plus.com


No i potem jak w Firefoxie wbijam adres to dostaje pustą stronkę, bez żadnego 
komunikatu o błedzię a ssh mówi:

debug1: Connection to port 8080 forwarding to socks port 0 requested.
debug1: channel 5: new [dynamic-tcpip]
debug1: channel 5: free: dynamic-tcpip, nchannels 7
debug1: Connection to port 8080 forwarding to socks port 0 requested.
debug1: channel 5: new [dynamic-tcpip]
debug1: channel 5: free: dynamic-tcpip, nchannels 7

Może to wina tego, że SSH jest z Ubuntu ?
I może jakaś opcja jest wyłączona przy kompilacji, ale z drugiej strony to ssh 
by pluł komunikatami o błędach.
Nie wiem czy to ma znaczenie, ale dla pewności powiem że forward POP3 i SMTP 
hula jak trzeba.
A może to, własne jądro ? Chociaż na jądrze Ubuntu jest taki sam efekt.
Możesz podesłać twoją linijkę z configu ssh, gdzie jest skonfigurowane 
DynamicForward ?

--
T.Bakiera


----------------------------------------------------------------------
Bedac w toalecie korzystala z ...

>>>   http://link.interia.pl/f1c8e