| View previous topic :: View next topic |
| Author |
Message |
fennec
l33t
Joined: 30 Aug 2003
Posts: 613
Location: Montreal
|
 Posted: Wed Nov 10, 2004 5:09 pm Post subject: ssh through squid problem |
 |
|
Hello,
I am behind a firewall which blocks everything and we access the web through an HTTP Proxy ( squid ). I have problem accessing an SSH server located somewhere else.
I tried to setup the sshd on port 443 and connected using putty through http proxy, but the connection drops badly.
Is there something we can change on the Squid box to avoid this problem or to allow ssh connections through the proxy or is it something i need to configure on the client...
TIA |
|
| Back to top |
|
 |
fennec
l33t
Joined: 30 Aug 2003
Posts: 613
Location: Montreal
|
| Posted: Fri Nov 12, 2004 8:37 am Post subject: |
|
|
bump!
no one as any idea about this ?! |
|
| Back to top |
|
|
tuxmin
l33t
Joined: 24 Apr 2004
Posts: 838
Location: Heidelberg
|
| Posted: Fri Nov 12, 2004 12:45 pm Post subject: |
|
|
Search this forum or Google for "ssh over http" there are quite some solutions around.
The point is that you need to tunnel the ssh protocol through http or even better through https (this way no proxy will even notice what nasty things you are doing ;P).
Hth, Alex!!!
_________________
ALT-F4 |
|
| Back to top |
|
|
fennec
l33t
Joined: 30 Aug 2003
Posts: 613
Location: Montreal
|
| Posted: Mon Nov 15, 2004 6:29 am Post subject: |
|
|
| tuxmin wrote: | Search this forum or Google for "ssh over http" there are quite some solutions around.
The point is that you need to tunnel the ssh protocol through http or even better through https (this way no proxy will even notice what nasty things you are doing ;P).
Hth, Alex!!! |
Well,
what i found when searching the web is mostly using a squid proxy through an SSH tunnel to anonymize your web browsing... which is not what i am looking for...
The other thing is that my admin allows me to ssh out through the proxy, he just doesn't want to open outgoing connections on port 22 through the firewall for security purposes..
I managed to connect to my ssh server through port 443 using the http proxy, but the connection is dropping
Note that I can have the admin to make modifications to the proxy server if you have any solutions that would require squid to be configured in some other way
Thanks for your attention to my problem
TIA |
|
| Back to top |
|
|
tuxmin
l33t
Joined: 24 Apr 2004
Posts: 838
Location: Heidelberg
|
| Posted: Mon Nov 15, 2004 9:59 am Post subject: |
|
|
I'm not really sure what squid does with the ssh protocol -- I have too little experience with it. But I guess corkscrew is what you really want.
Hth, Alex!!!
_________________
ALT-F4 |
|
| Back to top |
|
|
fennec
l33t
Joined: 30 Aug 2003
Posts: 613
Location: Montreal
|
| Posted: Tue Nov 16, 2004 8:08 am Post subject: |
|
|
| thx, i saw this one... but the machine i want to ssh from is a windows machine =P |
|
| Back to top |
|
|
befa
Apprentice
Joined: 28 Oct 2004
Posts: 208
Location: rennes
|
| Posted: Tue Nov 16, 2004 10:38 am Post subject: |
|
|
heu...maybe i'm making a mistake, but there's not configuratioin on putty about passing through a proxy?
_________________
Open Minds! Open Sources! Open Future!
think_tux@jabber.org |
|
| Back to top |
|
|
fennec
l33t
Joined: 30 Aug 2003
Posts: 613
Location: Montreal
|
| Posted: Tue Nov 16, 2004 10:39 am Post subject: |
|
|
Yes there is... but it doesnt work... it drops the connection often within 30 secs
and, i can ssh out hours with no probs to that box from somewhere else  |
|
| Back to top |
|
|
befa
Apprentice
Joined: 28 Oct 2004
Posts: 208
Location: rennes
|
| Posted: Tue Nov 16, 2004 10:43 am Post subject: |
|
|
not a problem about the port where squid is listenning? if it's only squid it's 3128 but if it's squid + dansguardian it's different...but i'm not sure that there's an effect....
have try to put on your sshd conf, to allow ip and put the window$ ip?
p.s: sorry for my bad english 
_________________
Open Minds! Open Sources! Open Future!
think_tux@jabber.org |
|
| Back to top |
|
|
fennec
l33t
Joined: 30 Aug 2003
Posts: 613
Location: Montreal
|
| Posted: Tue Nov 16, 2004 10:46 am Post subject: |
|
|
the problem isnt the sshd, it works fine without droppping connections from other locations
its not a link problem with the workplace's internet connection... |
|
| Back to top |
|
|
befa
Apprentice
Joined: 28 Oct 2004
Posts: 208
Location: rennes
|
| Posted: Tue Nov 16, 2004 10:48 am Post subject: |
|
|
maybe it's not the squid, but the fw? i duno...
_________________
Open Minds! Open Sources! Open Future!
think_tux@jabber.org |
|
| Back to top |
|
|
fennec
l33t
Joined: 30 Aug 2003
Posts: 613
Location: Montreal
|
| Posted: Tue Nov 16, 2004 10:50 am Post subject: |
|
|
| firewall blocks everything... |
|
| Back to top |
|
|
fennec
l33t
Joined: 30 Aug 2003
Posts: 613
Location: Montreal
|
| Posted: Tue Nov 16, 2004 10:53 am Post subject: |
|
|
squid is DMZ'ed and we proxy everything through it...
so there not much we can do...
we also use some vpn software which the firewall allows to limited number of IPs...
but that has nothing to do with my problem
My admin allows me to use ssh, has long has he doesnt have to open the port on the firewall for outgoing traffic...
and, no i cant ssh to that DMZ'ed box to ssh out somewhere else |
|
| Back to top |
|
|
|
Networking & Security
