From mboxrd@z Thu Jan 1 00:00:00 1970 Received: from lists.gentoo.org ([140.105.134.102] helo=robin.gentoo.org) by nuthatch.gentoo.org with esmtp (Exim 4.62) (envelope-from ) id 1H33J2-0008Dj-Vg for garchives@archives.gentoo.org; Sat, 06 Jan 2007 04:37:21 +0000 Received: from robin.gentoo.org (localhost [127.0.0.1]) by robin.gentoo.org (8.13.8/8.13.8) with SMTP id l064Z5aW015929; Sat, 6 Jan 2007 04:35:05 GMT Received: from ender.volumehost.net (adsl-69-154-123-202.dsl.fyvlar.swbell.net [69.154.123.202]) by robin.gentoo.org (8.13.8/8.13.8) with ESMTP id l064WlSb002043 for ; Sat, 6 Jan 2007 04:32:47 GMT Received: from localhost (localhost [127.0.0.1]) by ender.volumehost.net (Postfix) with ESMTP id 0590C16518 for ; Sat, 6 Jan 2007 04:32:47 +0000 (UTC) X-Virus-Scanned: amavisd-new at volumehost.net Received: from ender.volumehost.net ([127.0.0.1]) by localhost (ender.volumehost.net [127.0.0.1]) (amavisd-new, port 10024) with LMTP id 339HrVe49n0U for ; Sat, 6 Jan 2007 04:32:45 +0000 (UTC) Received: from adsl-69-154-123-205.dsl.fyvlar.swbell.net (adsl-69-154-123-205.dsl.fyvlar.swbell.net [69.154.123.205]) (using TLSv1 with cipher DHE-RSA-AES256-SHA (256/256 bits)) (No client certificate requested) by ender.volumehost.net (Postfix) with ESMTP id A1421140DC for ; Sat, 6 Jan 2007 04:32:45 +0000 (UTC) From: "Boyd Stephen Smith Jr." To: gentoo-user@lists.gentoo.org Subject: Re: [gentoo-user] [OT] Router for ssh tunnel/SOCKS proxy Date: Fri, 5 Jan 2007 22:32:45 -0600 User-Agent: KMail/1.9.5 References: <200701051223.06146.michaelkintzios@gmail.com> <200701052026.04236.michaelkintzios@gmail.com> <200701052244.22150.shrdlu@unlimitedmail.org> In-Reply-To: <200701052244.22150.shrdlu@unlimitedmail.org> X-Eric-Conspiracy: There is no conspiracy Precedence: bulk List-Post: List-Help: List-Unsubscribe: List-Subscribe: List-Id: Gentoo Linux mail X-BeenThere: gentoo-user@gentoo.org Reply-to: gentoo-user@lists.gentoo.org MIME-Version: 1.0 Content-Type: multipart/signed; boundary="nextPart2319236.ZXUf59irM7"; protocol="application/pgp-signature"; micalg=pgp-sha1 Content-Transfer-Encoding: 7bit Message-Id: <200701052232.45814.bss03@volumehost.net> X-Archives-Salt: a77ef586-aad5-48f6-ad3c-9d0f88b072ed X-Archives-Hash: 6c0a577efa1830ffea2ec0a1abb0d241 --nextPart2319236.ZXUf59irM7 Content-Type: text/plain; charset="utf-8" Content-Transfer-Encoding: quoted-printable Content-Disposition: inline On Friday 05 January 2007 15:44, Etaoin Shrdlu =20 wrote about 'Re: [gentoo-user] [OT] Router for ssh tunnel/SOCKS proxy': > On Friday 5 January 2007 21:25, Mick wrote: > > OK. I don't think I need to run a full VPN. I just want to securely > > connect to my router at home while I am out & about using public wifi > > hot spots and thereby to be able to connect to the internet using my > > ISP for browsing & email. The only ports I should need to forward via > > ssh to the router/server are those serving http/https for browsing and > > 110/995/143/25/587 for email. > > If I understand correctly then, you need ssh (and a public IP address) > running on the router. [snip: and then forward a ton of ports] Or you could forward X over the ssh tunnel, and run your web browser on=20 your router. >:) =46inally, if your email program and browser are SOCKS aware, you could=20 simply set them up to use your ssh connection as a SOCKS proxy. There's=20 specific support for this in OpenSSH, so that you don't have to open ports= =20 individually, it can be done dynamically on-demand. > Never used it myself, but take a look at the openwrt project. > From what I understand, it seems that it lets you put linux into the > firmware of many popular routers, and manage it using a web interface. While there has been some work done on a web interface, it's not a priority= =20 for the core OpenWRT team. For me, manging my router from a command=20 prompt worked better anyway. =2D-=20 "If there's one thing we've established over the years, it's that the vast majority of our users don't have the slightest clue what's best for them in terms of package stability." =2D- Gentoo Developer Ciaran McCreesh --nextPart2319236.ZXUf59irM7 Content-Type: application/pgp-signature -----BEGIN PGP SIGNATURE----- Version: GnuPG v2.0.1 (GNU/Linux) iD8DBQBFnyZtq72nDbhDXToRAuqqAKCfgsTRm+Xd2TDQgrBcrxN2GGfiKQCfSAWY VFK+7LCtjKWHYcCxF21b1J4= =3eu5 -----END PGP SIGNATURE----- --nextPart2319236.ZXUf59irM7-- -- gentoo-user@gentoo.org mailing list