From mboxrd@z Thu Jan 1 00:00:00 1970 Received: from lists.gentoo.org ([140.105.134.102] helo=robin.gentoo.org) by nuthatch.gentoo.org with esmtp (Exim 4.62) (envelope-from ) id 1H38Ws-000658-Kn for garchives@archives.gentoo.org; Sat, 06 Jan 2007 10:11:59 +0000 Received: from robin.gentoo.org (localhost [127.0.0.1]) by robin.gentoo.org (8.13.8/8.13.8) with SMTP id l06A8s2A020603; Sat, 6 Jan 2007 10:08:54 GMT Received: from ug-out-1314.google.com (ug-out-1314.google.com [66.249.92.175]) by robin.gentoo.org (8.13.8/8.13.8) with ESMTP id l06A6nVq005085 for ; Sat, 6 Jan 2007 10:06:49 GMT Received: by ug-out-1314.google.com with SMTP id z38so5855884ugc for ; Sat, 06 Jan 2007 02:06:49 -0800 (PST) DomainKey-Signature: a=rsa-sha1; q=dns; c=nofws; s=beta; d=gmail.com; h=received:from:reply-to:to:subject:date:user-agent:references:in-reply-to:mime-version:content-type:content-transfer-encoding:message-id; b=G5MIM3pa/vMxv8kxIqr2jjYHdN+GeBZsPQFvUc4Oy0gp+wkldas+fLQvWTOMJskZ3PNvoEGi6FAS5Q+UeHkAe+oguUleZshGgCCMeygf1b6yJISZYNZ2/Rt55stPFM5ng8Gng1fA5Fb/uWh24+ltIx7JqgrDgjZAVyRL3LWYXQI= Received: by 10.66.255.7 with SMTP id c7mr32230268ugi.1168078009013; Sat, 06 Jan 2007 02:06:49 -0800 (PST) Received: from lappy.study ( [213.162.120.196]) by mx.google.com with ESMTP id l33sm30610706ugc.2007.01.06.02.06.47; Sat, 06 Jan 2007 02:06:48 -0800 (PST) From: Mick To: gentoo-user@lists.gentoo.org Subject: Re: [gentoo-user] [OT] Router for ssh tunnel/SOCKS proxy Date: Sat, 6 Jan 2007 10:06:11 +0000 User-Agent: KMail/1.9.5 References: <200701051223.06146.michaelkintzios@gmail.com> <200701052244.22150.shrdlu@unlimitedmail.org> <200701052232.45814.bss03@volumehost.net> In-Reply-To: <200701052232.45814.bss03@volumehost.net> Precedence: bulk List-Post: List-Help: List-Unsubscribe: List-Subscribe: List-Id: Gentoo Linux mail X-BeenThere: gentoo-user@gentoo.org Reply-to: gentoo-user@lists.gentoo.org MIME-Version: 1.0 Content-Type: multipart/signed; boundary="nextPart1911688.uO6knIdPDr"; protocol="application/pgp-signature"; micalg=pgp-sha1 Content-Transfer-Encoding: 7bit Message-Id: <200701061006.36892.michaelkintzios@gmail.com> X-Archives-Salt: cca8c172-c406-40e5-803e-2e73d40dc603 X-Archives-Hash: 1560d12a1520a7e080f10eae47b1ba7f --nextPart1911688.uO6knIdPDr Content-Type: text/plain; charset="utf-8" Content-Transfer-Encoding: quoted-printable Content-Disposition: inline On Saturday 06 January 2007 04:32, Boyd Stephen Smith Jr. wrote: > On Friday 05 January 2007 15:44, Etaoin Shrdlu > > wrote about 'Re: [gentoo-user] [OT] Router for ssh tunnel/SOCKS proxy': > > On Friday 5 January 2007 21:25, Mick wrote: > > > OK. I don't think I need to run a full VPN. I just want to securely > > > connect to my router at home while I am out & about using public wifi > > > hot spots and thereby to be able to connect to the internet using my > > > ISP for browsing & email. The only ports I should need to forward via > > > ssh to the router/server are those serving http/https for browsing and > > > 110/995/143/25/587 for email. > > > > If I understand correctly then, you need ssh (and a public IP address) > > running on the router. > > [snip: and then forward a ton of ports] > > Or you could forward X over the ssh tunnel, and run your web browser on > your router. >:) Thanks, I also thought of running FreeNX on the router, if only the router= =20 were capable of running apps. It seems that openwrt is not (yet?) covering= =20 the netgear DG834. The wireless version DG834G is shown as WIP on the=20 openwrt website. I'll keep an eye on it, or one day upgrade my router. > Finally, if your email program and browser are SOCKS aware, you could > simply set them up to use your ssh connection as a SOCKS proxy. There's > specific support for this in OpenSSH, so that you don't have to open ports > individually, it can be done dynamically on-demand. Cool! I'll check it out.=20 > > Never used it myself, but take a look at the openwrt project. > > From what I understand, it seems that it lets you put linux into the > > firmware of many popular routers, and manage it using a web interface. > > While there has been some work done on a web interface, it's not a priori= ty > for the core OpenWRT team. For me, manging my router from a command > prompt worked better anyway. How do you set firewall rules using opewrt? Through a script? =2D-=20 Regards, Mick --nextPart1911688.uO6knIdPDr Content-Type: application/pgp-signature -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.4.6 (GNU/Linux) iD8DBQBFn3Ss5Fp0QerLYPcRAif1AKCr57TyHoVM6ACd4vekLBftrQh1JwCgi5MN OXEBdHmwWJaV7zZYHKxbz6U= =/DKC -----END PGP SIGNATURE----- --nextPart1911688.uO6knIdPDr-- -- gentoo-user@gentoo.org mailing list