I use this script, executed from /etc/inittab, to keep an ssh port open:
sensor:~# cat keepup
#!/bin/sh
while /bin/true; do
ssh -R 2632:127.0.0.1:22 -n -N
sleep 60
done
sensor:~#
I have a .ssh private/public key pair with an empty passphrase, and on
ra-tes.org it's installed in ~sensor/.ssh/authorized_keys. I run this
script from inittab like so:
b6:2:respawn:/root/keepup
The script should never exit, so it won't run into init's "Oh, you're
running this too quickly so we'll shut you down for five minutes"
feature.
When I want to connect to my sensor, I run:
ssh -p 2632
On Tue, 2010-08-03 at 10:47 -0400, Dave Cramer wrote:
>
>
> I use openvpn works like a charm.
>
>
> Dave
>
> On Tue, Aug 3, 2010 at 7:54 AM, j.chitte <> wrote:
>
>
>
> --- In "akikem" <> wrote:
> >
> > Hi there.
> > I am looking forward a solution so I can access my TS-7400
> even if it is inside a firewall I can't configure. This is
> because it would be nice if I could offer remote assistance to
> my costumers, but most of the time TI guys don't like to open
> ports or reconfigure anything. The equipment just do some
> basic logging, and I am using 2.6.21 ts #8 Kernel version, and
> the full Debian version.
> > I have use hamachi, but I have to enable a intel-based PC,
> to enable ssh to the TS-7400. It would be great if I could
> install directly some sort of VPN software like hamachi
> directly in the box.
> > The problem with hamachi is that is closed source, and they
> only offer some binary files, so I can't port it.
> > I have investigated and I found openvpn, wippien, and tinc.
> > Does anyone has try one of those or has another
> recomendation?
> > Regards,
> > Enrique
> >
>
>
> What kind of functionality do you need to have? You can
> connect ssh via any port with -p (see man) so you could use
> port 80. Then you can bind any port to go through that secure
> link and avoid touching the firewall. Since it's encrypted ,
> it's generally slower that opening the port you want but it
> gets around the problem.
>
> If no incoming connections are allowed the customer would have
> to initiate the connection.
>
> ssh -p 6622 -L 5900:localhost:5900 blah.dyndns.com
>
> I've found tigervnc fast even for remote X sessions on x86 to
> x86-64
>
>
>
>
>
>
>
>
>
------------------------------------
Yahoo! Groups Links
<*> To visit your group on the web, go to:
http://groups.yahoo.com/group/ts-7000/
<*> Your email settings:
Individual Email | Traditional
<*> To change settings online go to:
http://groups.yahoo.com/group/ts-7000/join
(Yahoo! ID required)
<*> To change settings via email:
<*> To unsubscribe from this group, send an email to:
<*> Your use of Yahoo! Groups is subject to:
http://docs.yahoo.com/info/terms/
|