Secure Tunnel Through Firewall

Posted By smtShannon 11/27/2012 11:00:40 AM
Add to Favorites0
Author Message
smtShannon
 Posted 11/27/2012 11:00:40 AM
Forum Expert

Forum Expert - (814 reputation)Forum Expert - (814 reputation)Forum Expert - (814 reputation)Forum Expert - (814 reputation)Forum Expert - (814 reputation)Forum Expert - (814 reputation)Forum Expert - (814 reputation)Forum Expert - (814 reputation)Forum Expert - (814 reputation)

Group: Forum Members
Last Active: 12/6/2012 4:59:00 AM
Posts: 1, Visits: 35
814
Can anyone tell mw how to set up a secure tunnel through a firewall?
will
 Posted 1/9/2014 6:24:44 PM
Supreme Being

Supreme Being - (22,648 reputation)Supreme Being - (22,648 reputation)Supreme Being - (22,648 reputation)Supreme Being - (22,648 reputation)Supreme Being - (22,648 reputation)Supreme Being - (22,648 reputation)Supreme Being - (22,648 reputation)Supreme Being - (22,648 reputation)Supreme Being - (22,648 reputation)Supreme Being - (22,648 reputation)

Group: Forum Members
Last Active: 10/5/2015 12:03:20 AM
Posts: 37, Visits: 141
Sure,

We do it all the time, it is 100% secure and very reliable.

The best and most stable and cheapest (free) solution we've found is cygwin and autossh. You can even use port 443 if you control the server and that will be allowed in almost any shop. autossh uses the OpenSSL library which is the widely used and trusted implementation of SSL around and has probably been attacked more than any other, if it failed, most financial systems would be compromised.

Cygwin is a port of the gnu utilities to windows. You can check it out at: http://www.cygwin.com

To install it, download: setup-x86.exe

And run the setup utility. Accept all the defaults and when you're will be asked to pick a mirror, does't much matter, pick something local and it will be faster.

When you select packages on the next scree, search for autossh and click on skip to download it. (see image below).

Click next to install.

Once you have it installed, you will need to create a public and private key and set cygwin up as a service.

It's also best to setup autossh as a service, this installs the service once you have verified that the tunnel works:

cygrunsrv -I AutoSSH -p /usr/bin/autossh.exe -a "-M 0 -F /home/username/tunnel.txt -N www.example.com"


The tunnel.txt should contain something like this:


RemoteForward 0.0.0.0:5000 localhost:5000
ServerAliveCountMax 2
ServerAliveInterval 10
TCPKeepAlive yes
PubkeyAuthentication yes
KbdInteractiveAuthentication no
ConnectTimeout 20
ConnectionAttempts 3
CompressionLevel 9
Compression yes
BatchMode yes
ExitOnForwardFailure yes
IdentityFile /home/username/.ssh/id_rsa
UserKnownHostsFile /home/username/.ssh/known_hosts
User mtcagent-TENANT_NAME
Port 443



If you need more help, contact me directly: will@systeminsights.com


Best,
Will

http://mtconnectforum.com/Uploads/Images/c8765813-f754-427e-b17a-e095.png
1/9/2014 6:25:29 PM by will

Similar Topics

Expand / Collapse

Reading This Topic

Expand / Collapse

Back To Top

Advertisements