| View previous topic :: View next topic |
| Author |
Message |
tecknojunky
Veteran
Joined: 19 Oct 2002
Posts: 1937
Location: Montréal
|
 Posted: Fri Jan 07, 2005 4:20 pm Post subject: X11 tunneling between two NATed networks? |
 |
|
I'm trying to do this:
[client] -> [Local Nat router] -> (Internet) -> [Remote Nat router] -> [X11 & SSHd server]
Port 23 is forwarded to the sshd process on the box behing the Remote NAT router.
On the client, I type ssh -Y user@DNSofRemoteNAT. echo $DISPLAY will give me the IP address of the Local Nat Router in the form of x.x.x.x:0.0. This makes me think that somehow the sshd server tries to open the X11 port on the Local Nat Router (which is wrong).
Any solution to this problems?
_________________
(7 of 9) Installing star-trek/species-8.4.7.2::talax. |
|
| Back to top |
|
 |
orionrobots
Apprentice
Joined: 07 Oct 2003
Posts: 289
Location: London, Uk
|
| Posted: Sat Jan 08, 2005 1:03 am Post subject: Re: X11 tunneling between two NATed networks? |
|
|
What happens if you use -X (instead of -Y)?
What DISPLAY should be is your localhost - and the forwarded local port - that is neither the local NAT or the remote NAT, unless of course the local NAT is your localhost.
I am not sure - but it is normally displays from 10 onwards as well.
Forwarding any ports - should be going through the local host, via the SSH client thats doing the forwarding - regardless of the protocol.
_________________
Danny Staple, curator of http://orionrobots.co.uk
Adopt an unanswered post initiative https://forums.gentoo.org/search.php?search_id=unanswered |
|
| Back to top |
|
|
ansible
n00b
Joined: 14 Oct 2004
Posts: 3
Location: Canada
|
| Posted: Sat Jan 08, 2005 1:16 am Post subject: |
|
|
If all else fails add -vv to the options and watch the debug messages. If you still need help post the output.
Rob
_________________
"If you want to make an apple pie from scratch, you must first create the universe. " Carl Sagan |
|
| Back to top |
|
|
djnauk
Apprentice
Joined: 11 Feb 2003
Posts: 183
Location: Caerphilly, Wales, UK
|
| Posted: Sat Jan 08, 2005 1:32 am Post subject: Re: X11 tunneling between two NATed networks? |
|
|
| tecknojunky wrote: | | On the client, I type ssh -Y user@DNSofRemoteNAT. echo $DISPLAY will give me the IP address of the Local Nat Router in the form of x.x.x.x:0.0. This makes me think that somehow the sshd server tries to open the X11 port on the Local Nat Router (which is wrong). |
If the IP address being shown is that of the router on your end, then that shouldn't be a problem. You are using NAT on both ends, which means that as far as the computers on either end concerned, they don't exist to each other. Your local computer is making a connection with the remote router, which is forwarding it on to the remote computer. The local computer doesn't know this nor does it see this.
Same goes for the remote computer. When it recieved the connection from the remote router (i.e it's local router), it see's the connection details as coming from the remote router (your local router), as that one changed the details of the connection before sending it out onto the internet (private ip addresses are non-routeable addresses, so can't be sent on public networks).
The only way to setup the connection to show the 'private' ip addresses on either side is using a VPN connection between the two subnets. That way, translation between the two networks doesn't occur. The packet for the remote connection is simply sent though the tunnel unchanged, and therefore the connection details remain unchanged at the other end.
_________________
Jonathan Wright (Technical Director, JAB Web Solutions)
UK Hosting & Reseller Hosting from JAB Web Solutions |
|
| Back to top |
|
|
|
Networking & Security
