Jump to content

SSH tunnel?


Recommended Posts


I have 2 computers. 1 macbook, 1 dell GX270 dekstop.

The Dell is running:

Ubuntu 8.10

80 gb hdd

2.8 gzh single core

1 gb ram

The macbook (laptop)

OS X 10.5.5

120 GB hdd

2.2 Gzh Dual core

4 gb ram

The Dell is on wired, the macbook is on wireless. I have a cable modem running into a couple of routers then running into my Dell.

Basically when I'm starbucks I want to tunnel into my lan here (the dell), and access the internet. Basically tunnel through starbucks/coffeeshop network on to a secured homenetwork, make sense?

Tunnel through coffee shop network into homenetwork out to the web.

Does that make sense?

Link to comment
Share on other sites

Assuming you can SSH to your dell:

1) Install Squid on the dell (ubuntu)

2) Configure squid proxy to allow anything from localhost to get to anything on the Internet. This might work (change paths if needed, run squid -z to initialize cache, then run squid to start it)

acl all src all

acl localhost src

acl to_localhost dst


http_access allow all

http_port localhost:3128

hierarchy_stoplist cgi-bin ?

access_log /var/squid/logs/access.log squid

refresh_pattern ^ftp: 1440 20% 10080

refresh_pattern ^gopher: 1440 0% 1440

refresh_pattern -i (/cgi-bin/|\?) 0 0% 0

refresh_pattern . 0 20% 4320

acl apache rep_header Server ^Apache

broken_vary_encoding allow apache

coredump_dir /var/squid/cache

3) Tunnel your port 3128 to port 3128 on the dell.


4) Configure your browser to use http://localhost:3128 as the proxy server

If you can't access SSH on your home box from within starbucks, try running sshd on port 443, 53, or 80. You may need to set it up as a PAT (Port Address Translation, sometimes called Port Forwarding or Virtual IP) on your router(s).

Link to comment
Share on other sites

Most people use VPN's but SSH tunneling has been covered a bunch of times and there are plenty of forum threads on how to do it. I had posted instructions form a BSODTV episode a long time ago using putty and openssh: http://hak5.org/forums/index.php?showtopic...amp;#entry74846

Link to comment
Share on other sites

Just setup a SSH daemon on the host which you'll connect to outside your network,

Then once you configure it etc simply using the attribute -D "PORT" and set your browser to use that port as a SOCK proxy.

Some minor configuration needs to be done to the SSH daemon.

Link to comment
Share on other sites

Join the conversation

You can post now and register later. If you have an account, sign in now to post with your account.

Reply to this topic...

×   Pasted as rich text.   Paste as plain text instead

  Only 75 emoji are allowed.

×   Your link has been automatically embedded.   Display as a link instead

×   Your previous content has been restored.   Clear editor

×   You cannot paste images directly. Upload or insert images from URL.

  • Recently Browsing   0 members

    • No registered users viewing this page.
  • Create New...