SSH Tunnels

From CSWiki
Jump to: navigation, search

Some servers are only accessible from within campus, and since not everyone has the option of coming onto campus every day, students have an option for accessing websites through an SSH tunnel. This process is detailed below.

Contents

[edit] SSH Security

Due to the ever increasing attempts to break in to user accounts via SSH, all invalid logins are monitored. Any IP addresses which attempts to log in incorrectly 10 times will be ignored for at least 60 minutes. Anyone attempting to log in as root will be ignored for at least 60 minutes.

[edit] Using Linux

You can simply open a terminal and type $ ssh -D 55555 username@cslab100.cs.edinboro.edu (or $ ssh -D 55555 username@cslab101.cs.edinboro.edu) and enter your password. You can now configure your web browser to use the proxy tunnel through port 55555.

[edit] Using Mac OS X

You can open Terminal (located in /Applications/Utilities/Terminal) and type ssh -D 55555 username@cslab100.cs.edinboro.edu (or $ ssh -D 55555 username@cslab101.cs.edinboro.edu) and enter your password. You can now configure your web browser to use the proxy tunnel through port 55555.

[edit] Using Microsoft Windows

Windows does not come with a secure shell client, so you need to download one first.

  1. Download PuTTY
  2. Install PuTTY
  3. Run PuTTY
  • Host name: cslab100.cs.edinboro.edu or cslab101.cs.edinboro.edu
  • Connection type: SSH
  • Under Connection - SSH - Tunnels: Enter a "Source Port" of 55555, select "Dynamic", and click "Add"
  • You will be prompted for your username and password.
    • Username: Your CS user name (this is different from your EUP username or email address!)
    • Password: Default: Your 6 digit birth date in the format MMDDYY

You can now configure your web browser to use the proxy tunnel through port 55555.

[edit] Firefox

You must configure a web browser to use the newly created tunnel. In Firefox, go to "Options - Network Tab - Settings - Manual proxy configuration." Put in a SOCKS Host of 127.0.0.1 and port 55555. Select SOCKS v5, and make sure the "No Proxy for:" includes both "localhost" and "127.0.0.1"

Finally, go to a website like http://www.whatismyip.com and verify your IP address.


[edit] More

For more about proxy tunnels, and creating multiple hop tunnels, check out http://sophiedogg.com/ssh-proxy-through-multiple-servers

Personal tools