From mboxrd@z Thu Jan 1 00:00:00 1970 Received: from lists.gentoo.org ([140.105.134.102] helo=robin.gentoo.org) by nuthatch.gentoo.org with esmtp (Exim 4.62) (envelope-from ) id 1H3wtq-0003KG-HT for garchives@archives.gentoo.org; Mon, 08 Jan 2007 15:59:02 +0000 Received: from robin.gentoo.org (localhost [127.0.0.1]) by robin.gentoo.org (8.13.8/8.13.8) with SMTP id l08FvuE1007407; Mon, 8 Jan 2007 15:57:56 GMT Received: from spore.ath.cx (c-66-41-120-249.hsd1.mn.comcast.net [66.41.120.249]) by robin.gentoo.org (8.13.8/8.13.8) with ESMTP id l08FrL6M013340 for ; Mon, 8 Jan 2007 15:53:21 GMT Received: from pascal.spore.ath.cx (pascal.spore.ath.cx [192.168.1.100]) (using TLSv1 with cipher DHE-RSA-AES256-SHA (256/256 bits)) (No client certificate requested) by spore.ath.cx (Postfix) with ESMTP id E549FCB30D for ; Mon, 8 Jan 2007 09:53:09 -0600 (CST) Date: Mon, 8 Jan 2007 09:53:20 -0600 From: Dan To: gentoo-user@lists.gentoo.org Subject: Re: [gentoo-user] [OT] Router for ssh tunnel/SOCKS proxy Message-ID: <20070108095320.79e9e6f5@pascal.spore.ath.cx> In-Reply-To: <200701060007.22806.michaelkintzios@gmail.com> References: <200701051223.06146.michaelkintzios@gmail.com> <200701052244.22150.shrdlu@unlimitedmail.org> <459ECA72.5090407@badapple.net> <200701060007.22806.michaelkintzios@gmail.com> Organization: Spore X-Mailer: Sylpheed-Claws 2.4.0 (GTK+ 2.10.6; x86_64-pc-linux-gnu) Precedence: bulk List-Post: List-Help: List-Unsubscribe: List-Subscribe: List-Id: Gentoo Linux mail X-BeenThere: gentoo-user@gentoo.org Reply-to: gentoo-user@lists.gentoo.org Mime-Version: 1.0 Content-Type: text/plain; charset=US-ASCII Content-Transfer-Encoding: 7bit X-Archives-Salt: e3bfa32c-78dc-48ca-be32-e668e8d7efb1 X-Archives-Hash: c7d4f35abbf05bf1ae096f0f8453e3c0 On Sat, 6 Jan 2007 00:07:00 +0000 Mick wrote: > I just checked and it seems that the OEM firmware on the netgear > drops all ssh attempts to connect. :( Im sure your router's firmware isn't allowing ssh connections. The router itself does not offer ssh access to anyone. What you would probably want to do is to enable port forwarding on your router to a linux system behind the router. >I do not want to run a PC behind the router. Instead, I am looking for >an enhanced hardware router type of solution. Would you perhaps know >of either a COTS product, or a Linux embedded approach to fulfil this >requirement? I am not sure what you mean by this, but I do hope you'll consider using a normal commodity PC as your router. Security is fabulous, CPU usage for routing and such will hover at about 0%, it requires very little memory (say, under 15 megs, and that's from experience -- the actual number was 13 megs fyi) and gives you a handy place for dns, email, dhcp, nis, ftp, http, and so on if you care to set up any network services for yourself. In a pinch (low on hardware) you could easily set up your workstation to route for the network at, effectively, no extra charge. That way you can open the ports you want at least. I don't know how to embed it, it's totally done, but the actual facility of this is unclear to me. >I would like to be able to tunnel through ssh to my home router >(netgear DG834) from random public wifi access points, for the purpose >of connecting through my own ISP to the internet for internet browsing >and email. are you sure you want the internet traffic to go through the wifi provider's ISP, through the worldwide web (tracepath gives routes that you may find surprising for traffic in the neighborhood will often go accross the nation for me), back through your home ISP, and into your home network, then back again through your home ISP and back into the world to the computer whose website you are attempting to browse? That's a pretty convoluted trip. for email, you could always set up a bonafide IMAP server... if you had a linuxbox routing for you ; ). The gray hair count on that project wasn't too bad for me, and I love having my email in the closet down the hallway instead of on my flaky WebMail providers' servers. -- gentoo-user@gentoo.org mailing list