From mboxrd@z Thu Jan 1 00:00:00 1970 Received: from lists.gentoo.org ([140.105.134.102] helo=robin.gentoo.org) by nuthatch.gentoo.org with esmtp (Exim 4.62) (envelope-from ) id 1H2zbp-0002pz-K1 for garchives@archives.gentoo.org; Sat, 06 Jan 2007 00:40:30 +0000 Received: from robin.gentoo.org (localhost [127.0.0.1]) by robin.gentoo.org (8.13.8/8.13.8) with SMTP id l060birq026219; Sat, 6 Jan 2007 00:37:44 GMT Received: from popmail.jettissystems.com (popmail.jettissystems.com [38.118.146.212]) by robin.gentoo.org (8.13.8/8.13.8) with ESMTP id l060ZLZI009176 for ; Sat, 6 Jan 2007 00:35:22 GMT Received: from [10.23.0.139] (unknown [74.93.11.97]) by popmail.jettissystems.com (Postfix) with ESMTP id AF44956D492 for ; Fri, 5 Jan 2007 16:35:20 -0800 (PST) Message-ID: <459EEEC7.3050300@badapple.net> Date: Fri, 05 Jan 2007 16:35:19 -0800 From: kashani User-Agent: Thunderbird 1.5.0.9 (Windows/20061207) Precedence: bulk List-Post: List-Help: List-Unsubscribe: List-Subscribe: List-Id: Gentoo Linux mail X-BeenThere: gentoo-user@gentoo.org Reply-to: gentoo-user@lists.gentoo.org MIME-Version: 1.0 To: gentoo-user@lists.gentoo.org Subject: Re: [gentoo-user] [OT] Router for ssh tunnel/SOCKS proxy References: <200701051223.06146.michaelkintzios@gmail.com> <200701052244.22150.shrdlu@unlimitedmail.org> <459ECA72.5090407@badapple.net> <200701060007.22806.michaelkintzios@gmail.com> In-Reply-To: <200701060007.22806.michaelkintzios@gmail.com> Content-Type: text/plain; charset=ISO-8859-1; format=flowed Content-Transfer-Encoding: 7bit X-Archives-Salt: 18f3c26c-4c91-41c8-898b-1fc900dba578 X-Archives-Hash: d0cca957f5d6c05f22a25a7ab1a9740a Mick wrote: > I just checked and it seems that the OEM firmware on the netgear drops all ssh > attempts to connect. :( > > $ ssh 192.168.0.1 > ssh: connect to host 192.168.0.1 port 22: Connection refused > > Same story when I use my internet IP address (it times out). It seems that I > will have to try openwrt. > > Thank you all for your suggestions. > > PS. I noticed that the -D option can be specified as: "ssh -D > [bind_address:]port". Which bind_address should be used in the above example? > I am not sure I understand how this is meant to be used. My method works for any normal sshd server you can connect to that allows forwarding. OpenWRT should work for you as the socks proxy is created on the initiating user side, your local ssh client, that's why you set your browser to 127.0.0.1:port and then it forwards packets internal to the ssh tunnel without invoking anything on the server side. If you don't set an IP with -D then it uses localhost which is what you'd want in this case. kashani -- gentoo-user@gentoo.org mailing list