On Thu, 2011-03-17 15:48:27 +0100, Bernhard.Baeumle@mt.com wrote:
Hi
I use stunnel on a DMZ server for tunnelling/forwarding/proxying... (whatever term is correct).
The situation is as follows: Hardware : External PC <==> DMZ server <==> company-internal server Operational : https://xxx.yy.zz (443) <==> (443) stunnel (80) <==> (80) SVN Server listening on port 80 NEW/NEED HELP : plink (22) <==> (22) stunnel (22) <==> (22) sshd listening on port 22
I don't think the clients bind() to the ports they connect() to. i.e. your picture should look like this:
external PC DMZ server internal server
https://xxx.yy.zz (p1) ==> (443) stunnel (p2) --> (80) SVN Server plink (p3) ==> (22) stunnel (p4) --> (22) sshd
p1 through p4 are arbitrary port numbers. ==> and --> are encrypted and clear-text connections, respectively.
Does sshd cope with clear-text connections?
If yes, "telnet dmz-server-name.net 22" (or the rlogin equivalent) should work on an internal workstation.
Ludolf