Ngamanye amaxesha sidinga dlulisa idatha ngesokethi phakathi koomatshini abohlukeneyo, njengonxibelelwano lweTelnet, ukhuphelo lwefayile ye-FTP, umbuzo we-SQL okanye naluphi na olunye uhlobo lokuhambisa.
Idatha ihamba ikrwada kwinethiwekhi, ke ukungazithembiOko kuthetha ukuba banokubanjwa yiyo nayiphi na indlela esendleleni phakathi kwemvelaphi nendawo ekuyiwa kuyo, oko kukuthi yenze.
Asinakuyithintela le datha ukuba ingafakwa, kodwa into esinokuyithintela kukuba itolikwe kwaye iqondwe ngabantu besithathu, ngokufihla unxibelelwano.
SSH sisixhobo esisivumela ukuba sikwenze unxibelelwano olukhuselekileyo phakathi koomatshini. Olona hlobo lusetyenziswayo kukuqhagamshela kude kwiitoliki zomyalelo.
Nangona kunjalo, inikezela ngamanye amathuba, njengokudala iitoni ezifihliweyo phakathi koomatshini abohlukeneyo.
Masithi sifuna i-telnet ukusuka kwi-Host1 ukuya kwi-Host2:
host1$ telnet host2
Olu nxibelelwano luvulekile ngokupheleleyo kwaye lunokuba njalo isetyenzisiwe. Ukuyikhusela, siya kuthumela izibuko elikhethwe ngokungenamkhethe (umzekelo 5000) kumamkeli 1 ukuya kwizibuko 23 (umnxeba) kumamkeli2.
Ngale ndlela siya kufumana yonke idatha ethunyelwe kwizibuko lama-5000 le-host1 ukuhamba ngokufihliweyo kwitonela evulwa yi-ssh ngezibuko lama-22 le-host2 emva koko sijolise kwizibuko lama-23 le-host2, ngaloo ndlela sifikelela kwindawo ekuyiwa kuyo okokugqibela.
Ukwenza oku, kufuneka sazi igama lomsebenzisi kunye negama lokugqitha le-host2.
Ukuvula itonela sibhala:
host1$ ssh -R 5000:localhost:23 usuariohost2@host2
Kulungile:
host1$ ssh -L 5000:host2:23 usuariohost2@host2
Zombini iinketho ziyalingana. Ukuseka unxibelelwano lwetelnet, asisayi kubhekisa kwi-host2 kodwa kwizibuko elikhethwe kwi-host1:
host1$ telnet localhost 5000
Ngale nto senza ukuba naluphi na unxibelelwano lukhuseleke, nokuba yifowuni okanye ngenye indlela. Ukuphanda ngaphezulu kancinci siza kubona ukuba enkosi kumandla SSH Oku kulungiswa kungenziwa kwakhona koomatshini besithathu, abanokusivumela ukuba ngenqaku elinye lokungena sikwazi ukufikelela ngokukhuselekileyo ukusuka kwi-LAN yonke ukuya kwi-LAN eyahlukileyo.
Ithiyori ijongeka inomdla kakhulu, kodwa iya kuba ngakumbi nangakumbi xa sibona imeko efanelekileyo.
Kodwa inyani kukuba, nangona bendimfutshane, ndiyayithanda inqaku.
mhlawumbi ujonge i-wiki ufumana ukhuthazo https://wiki.archlinux.org/index.php/Secure_Shell#Forwarding_other_ports
efanayo, kodwa icandelo le-autossh https://wiki.archlinux.org/index.php/Secure_Shell#Autossh_-_automatically_restarts_SSH_sessions_and_tunnels
Ngokwenyani, nantoni na onokuyithumela nge-ssh, nokuba iyasasaza, unxibelelwano kumamkeli. njl. ngenxa yesizathu x ufuna ukuyifihla.
kunye nemigaqo ekhuselekileyo
Ngamanye amaxesha ndisebenzisa i-SSH kwinqanaba elisisiseko. Izibuko elingagqibekanga linama-22, akunjalo?
Ke, ukuba ndiqonda ngokuchanekileyo, i-pc yam ibamba i-1 kwaye enye endifuna ukudibanisa kuyo yi-host2, le tonela iya kwenza unxibelelwano phakathi kwe-port 5000 kunye ne-port yayo engama-23, kwaye iphele kwizibuko lama-22?
Kutheni izizathu zokutshintsha amazibuko? Ngaba unokwenza itonela enezibuko 22?
Inqaku elinomdla kakhulu. Njengo nano, ndifuna ngaphezulu!
I-SSH iyayisebenzisa i-port 22 ngokungagqibekanga (nangona inokutshintshwa). Eli zibuko lelinye elinokusetyenziselwa unxibelelwano lokwenyani phakathi kwemikhosi emibini. Yiyo leyo kuya kufuneka uqiniseke ukuba ivulekile kwaye akukho mlilo usikayo. Kodwa kumsebenzisi icace gca. Ungalibala ngaye. Kumzekelo, ukuhlenga-hlengiswa kwakhona kuphakathi kwamazibuko angama-5000 kunye nama-23. Umsebenzisi uya kubona ukuba yonke into ayithumelayo kwizibuko lama-5000 lomphathi wakhe livela kwi-23 yendawo yokubamba iindwendwe.
Ngokucacileyo, umsebenzisi ngamnye angathumela kwakhona kwizibuko alibona lifanelekile.
Enkosi ngezimvo zakho. Le yiposi yam yokuqala kwaye izimvo zakho ziya kunceda ukwenza enye elandelayo ibengcono.
Ngaba nayo inokwenziwa ngeVPS?
Kulungile ke le yimeko yam, iPC1 inakho ukufikelela kwiserver, kodwa iPC2 ayinakho, zombini zidibene nge-ssh, ndifuna ukufikelela kwi-PC2, kodwa leliphi izibuko le-PC1 endilithumelayo? ukuba eneneni into endiyifunayo kukufikelela kwizibuko leseva ukusuka kwi-PC2 kwaye iipakethi zine-PC1 njengomthombo wazo we-IP. Ndiyaqonda?
Uzenza uqondwe. Kule meko ufuna iPC1 ukuhambisa kwakhona izibuko lePC2 kwizibuko lama-22 kwiseva:
PC2 $ ssh -L 5000: Iseva: 22 yomsebenzisi PC1 @ PC1
kwaye, ukugcina olu nxibelelwano luvulekile, ukusuka kwesinye isiphelo sendlela:
PC2 $ ssh umsebenzisiServer @ localhost -p 5000
kwaye sele ungaphakathi.
Okokugqibela isisombululo esisebenzayo !! Enkosi Getafix, undinike ilizwe elinokwenzeka !!
Ndiyavuya!
Excelente artículo. Bienvenido a DesdeLinux 😀
Kwaye kufuneka wenze ntoni xa sinama-22 avaliweyo? INDLELA YOKUBONISA UKUHLEKA..
Enkosi elav.
Ukuba izibuko 22 livaliwe, mmmm, kuya kufuneka sikhangele enye indlela yokufumana i-XD firewall
Kwaye okona kubi (hypothetical): ukuba ithintelwe ngumboneleli weVPS.
Ndenze nje uviwo kwiiyure ezimbalwa ezidlulileyo ndinemibuzo malunga nalo 😛
Andizukutsho:
umphathi1 $ ssh -R 5000: indawo yangaphakathi: 23 userhost2 @ host2
ilingana nomnye umgca womyalelo ... one -L.
Ukusukela -R ibonisa ukuba izibuko elivulekileyo kunxibelelwano olutsha likwicala elikude, Oko kukuthi, kwicala leseva yakho ye-ssh; ngelixa -L ivula izibuko kwicala laseKhaya, kwicala lomthengi ukufumana unxibelelwano olutsha.
Ukuguqulelwa komgca:
umphathi1 $ ssh -R 5000: indawo yangaphakathi: 23 userhost2 @ host2
Inokuba yinto enje: Ukuba kwi-host1, qhagamshela kwiseva ye-ssh (izibuko lama-22) le-host2 kunye nomsebenzisi wam womsebenzisi2 kwaye uthumele uqhagamshelo olwenziwe kwizibuko elikude 5000 le-host2 ukuya kwizibuko 23 kwi-host1 (indawo yam yobulali)
Ukuba akunjalo, ndilungise! 😉
-
Kwelinye icala ... ukuba iserver ivimbe ungeno lonxibelelwano kwizibuko 22, oko kukuthi, asinakho ukudibanisa kude kumncedisi we-ssh; into enokwenziwa yile; ukuba umncedisi (umhlobo sysadmin ngasemva kwe-firewall yenkqubo ekude ye-host2) umgca wolawulo uyenziwa:
host2 $ nohup ssh -fN -R 6000: indawo yangaphakathi: 22 userhost1 @ host1
-f Iya ngasemva
-N Ayiphumezi nawuphi na umyalelo kude
i-nohup ithintela ukwenziwa komyalelo ekuphazanyisweni xa uphuma
umphathi1 $ ssh userhost2 @ localhost -p 6000
Ngale ndlela, ukusuka kwi-host1 sivelisa uqhagamshelo kwi-localhost (kwa-host1 efanayo) kwizibuko 6000 eya kuthi igqithisele uqhagamshelo kwizibuko 22 lenkqubo ekude host2, apho siza kungena khona nomamkeli2.
Oku kuyakuvumela (khange ndiyvavanye, kodwa kuyavakala ukuba iyasebenza) ukungena kwi-ssh server ebhlokiweyo yi-firewal ngoncedo oluncinci ngaphakathi! 😀
Le yokugqibela ndiyifundile kwinkcazo eyenziwe kwimagazini yeGeek Stuff
http://www.thegeekstuff.com/2013/11/reverse-ssh-tunnel/
Ndiyithanda kakhulu impapasho yenu; Ndizifunda rhoqo!
Ukubulisa
Unyanisile. Kukho impazamo kwinqaku. Ukuhanjiswa kwakhona akulingani. Umyalelo we-host1 $ ssh -R 5000: i-localhost: i-23 yomsebenzisihost2 @ i-host2 yenza i-redirection, oko kukuthi, ibuyisela i-port ekude eyi-5000 ukuya kwi-23 yendawo, ngokuchasene noko kwenziwa ngumyalelo -L.
Enkosi ngokulungiswa.