'Re: windows to linux via the internet'

[prev in list] [next in list] [prev in thread] [next in thread] 

List:       secure-shell
Subject:    Re: windows to linux via the internet
From:       "Frank S. Bernhardt" <frank () bcsi ! ca>
Date:       2004-02-17 23:06:48
Message-ID: 40329E88.9000902 () bcsi ! ca
[Download RAW message or body]

Jules

I've been following this thread for a bit and there are a number of good 
posts but some are quite scary.

You never ever want to put your shares onto the Internet un-encrypted so 
  using ssh is a good thing. Setting up vpn's can be a pain and may or 
may not work depending on what routers the various isps are using (found 
that one out the hard way).

What I have found works the best for my customers and their various 
configurations is to use cygwin's ssh under windoze to do the encryption 
and Openssh on the Linux box to de-encrypt.

For example.

On the Linux server I do:

ssh -A -f -g -N -v -L 9876:localhost:139 servername

On the PC I do (after installing cygwin):

ssh -l username localhost -v -L 139:servername.domainname:9876

net use x: \\127.0.0.1\sharename

(make sure you disable file & print sharing on the PC first)

What this effectively does is to cause windoze to access the sharename 
on the machine with ip address 127.0.0.1, itself. ssh is listening to 
port 139 on 127.0.0.1 and encrypts the session and connects to port 9876 
(or whatever you specify) on the remote Linux server running Samba. ssh 
on the remote server is listening to port 9876 and decrypts the data and 
forwards it to port 139 on the localhost (Reader's Digest (tm) version).

Notes:

- You don't need the '-v'; that's for seeing what's going on.

- If using a firewall (and you should) remember to forward port 9876 (or 
whatever).

- On the server, put the command in a startup script with a nohup.

- You can copy the keys to the client to eliminate the password prompt, 
but having the password isn't really such a bad thing especially if the 
client is a laptop that could be 'lost'.

- Server O/S environments tested are Linux and SCO OpenServer

- Client O/S environments tested are 2000 Pro, XP Pro (Pro ... now 
there's an oxymoron). I suspect win98 should work too.

I've used this configuration both inside and outside customers' offices 
on lan, adsl, cable and serial modem connections with much success.

JM Fraser wrote:
> I have various W32 clients that I want to connect to a Linux box. I am 
> looking for the following setup:
> 
> Windows clients, users click on a drive mapping such as J: within 
> Windows Explorer and connect instantly to a Volume on the linux server, 
> via SSH via the internet.
> 
> Can this be done?
> 
> with much thanks
> Jules
> 
> 

-- 

Regards

Frank S. Bernhardt
b.c.s.i.
14 Halton Court
Markham, ON.
L3P 6R3

905-471-1691 Voice
905-471-3016 FAX

frank@bcsi.ca

[prev in list] [next in list] [prev in thread] [next in thread]
Configure | About | News | Add a list | Sponsored by KoreLogic