From mboxrd@z Thu Jan 1 00:00:00 1970 Received: from lists.gentoo.org ([140.105.134.102] helo=robin.gentoo.org) by nuthatch.gentoo.org with esmtp (Exim 4.62) (envelope-from ) id 1H2sBi-0006Ft-2m for garchives@archives.gentoo.org; Fri, 05 Jan 2007 16:45:02 +0000 Received: from robin.gentoo.org (localhost [127.0.0.1]) by robin.gentoo.org (8.13.8/8.13.8) with SMTP id l05GeqY0004277; Fri, 5 Jan 2007 16:40:52 GMT Received: from um1.unlimitedmail.net (139.Red-80-26-111.staticIP.rima-tde.net [80.26.111.139]) by robin.gentoo.org (8.13.8/8.13.8) with ESMTP id l05GbPhB002883 for ; Fri, 5 Jan 2007 16:37:27 GMT Received: from ppp.zz ([137.204.208.98]) (authenticated bits=0) by um1.unlimitedmail.net (8.13.7/8.13.4) with ESMTP id l05GVO76024861 for ; Fri, 5 Jan 2007 17:31:26 +0100 From: Etaoin Shrdlu To: gentoo-user@lists.gentoo.org Subject: Re: [gentoo-user] [OT] Router for ssh tunnel/SOCKS proxy Date: Fri, 5 Jan 2007 18:00:10 +0100 User-Agent: KMail/1.9.5 References: <200701051223.06146.michaelkintzios@gmail.com> <459E5DF2.7000708@buanzo.com.ar> <200701051553.14465.michaelkintzios@gmail.com> In-Reply-To: <200701051553.14465.michaelkintzios@gmail.com> Precedence: bulk List-Post: List-Help: List-Unsubscribe: List-Subscribe: List-Id: Gentoo Linux mail X-BeenThere: gentoo-user@gentoo.org Reply-to: gentoo-user@lists.gentoo.org MIME-Version: 1.0 Content-Type: text/plain; charset="utf-8" Content-Transfer-Encoding: 7bit Content-Disposition: inline Message-Id: <200701051800.10572.shrdlu@unlimitedmail.org> X-UnlimitedMail-MailScanner-From: shrdlu@unlimitedmail.org X-Archives-Salt: c10339c1-4207-445c-b604-4cd0389c8dfa X-Archives-Hash: e195b781adec2630c310edfe69309648 On Friday 5 January 2007 16:53, Mick wrote: > > More about that here: > > > > "Why TCP over TCP is a Bad Idea" > > http://sites.inka.de/sites/bigred/devel/tcp-tcp.html > > Hmm, that explains why running VCN through ssh gets a bit ropy at > times? Do you mean VNC? > So, is port forwarding for browsing and emails through ssh a > bad idea then? No, because with ssh port forwarding you just forward the data coming from/going to the application (eg, mailreader) without stacking additional protocols (as in, for example, ppp or ip over ssh), for which you need some way of forwarding IP-or-lower-level data between interfaces (for example, using tun/tap). Some programs (like openvpn) overcome the issue by using tcp-over-udp by default. And, anyway, tcp over tcp is a bad idea, but that does not necessarily mean that it won't work. It will most likely fail when the transport link is slow or error prone. -- gentoo-user@gentoo.org mailing list