Ssh tunnel scratch

From cpwiki.net
Revision as of 16:25, 24 January 2018 by Nighthawk (Talk | contribs)

(diff) ← Older revision | Latest revision (diff) | Newer revision → (diff)
Jump to: navigation, search
Check Point Profressional Services

reverse tunnel on a check point splat / secureplatform R75.40 device

the ssh client is older (openssh-3.6.1p2-33.30.39cp) and less functional. Doesn't support a remote bind address

[Expert@chkpfw]# ssh --help
...
-R listen-port:host:port   Forward remote port to local address

more descriptive translation of the line above

-R remote_host_listen-port:localhost_ip:localhost_port

Example command:

 ssh -f -N -R 10022:192.168.1.1:22 username@192.168.1.1

where remote_host = 192.168.1.1

compared to OpenSSH_6.1p1-hpn13v11, we can see the remote bind address option below in modern openssh implementation that is missing.

man ssh
...
-R [bind_address:]port:host:hostport