[Cialug] SSH Forwarding

cialug@cialug.org cialug@cialug.org
Thu, 06 Jan 2005 18:45:42 +0000 

I'm not sure that's the problem.  I connect to a gateway, forwarding local port
5985 to remote host 172.18.128.54 port 5900.  The gateway's address is seen as
172.18.124.2 to the rest of the network at work.  I then try to start vncviewer
on my local linux box, going to localhost:85.  It connects, asks me for my
password, then drops the connection after I enter the password.  I've also tried
this from a windows machine, running WinVNC connecting to linux:85, and that
doesn't work.  I've also tried using the -via option on vncviewer on linux, and
I've tried (with X forwarding enabled) running vncviewer on the gateway
connecting to the .54 machine with no luck.  Other X apps work from the gateway,
so I know X works at this point (from there, I can't get X forwards to work, but
that's a different problem).  At work, I can connect to the machine from another
box, which should be the same as connecting to it from the gateway, since
they're on the same network (although they are on different subnets).  I'm at a
loss.
--
Tim W.
> On Thu, Jan 06, 2005 at 02:32:02PM +0000, timwilson011@mchsi.com wrote:
> > I'm trying to forward ports to a remote machine at my work.  The problem is 
> that
> > I have to go to a gateway machine first.  I'm trying one of 2 different
> > forwards, one VNC, and one X.  It doesn't matter which one I get working.
> > 
> > I'm trying to forward a local port to a remote machine running VNC.  My 
> command was:
> > ssh -g -L5985:172.18.128.54:5900 -P -t -C username@gateway
> > 
> > I used 5985 since I don't have a local VNC running on that port.  The remote
> > machine is a Win2k box run tightvnc.  I then run vncviewer localhost:85.  It
> > connects to the remote machine, I enter the password, but then the session 
> dies.
> >  If I turn on very very verbose, I get the following:
> > debug1: channel_free: channel 2: direct-tcpip: listening port 5985 for
> > 172.18.128.54 port 5900, connect from 127.0.0.1 port 42142, nchannels 3
> > debug3: channel_free: status: The following connections are open:
> >   #1 client-session (t4 r0 i0/0 o0/0 fd 5/6)
> >   #2 direct-tcpip: listening port 5985 for 172.18.128.54 port 5900, connect 
> from
> > 127.0.0.1 port 42142 (t4 r2 i3/0 o3/0 fd 8/8)
> > debug3: channel_close_fds: channel 2: r 8 w 8 e -1
> > Any ideas?
> 
> Be sure that TightVNC allows connections on 5900 from localhost. 
> I've seen clients (not sure which one at the moment, might be
> able to tell you later when I next get onto the machines in
> question) that disallow this by default, for some reason.  I've
> had to change them such that, instead of disallowing that, that
> that is the *only* thing they allow (ie, I don't want to allow a
> non-tunneled connection from any other computer).
> 
> -- 
> Joe
> 
> _______________________________________________
> Cialug mailing list
> Cialug@cialug.org
> http://cialug.org/mailman/listinfo/cialug