Reversing SSH HTTP tunnel

Laurence Rowe l at lrowe.co.uk
Wed Jun 8 23:51:45 CEST 2011


On 8 June 2011 16:53, Samuel ROZE <samuel.roze at gmail.com> wrote:
> 2011/6/8 Christian Albrecht <christian.albrecht at easynet.com>:
>>> $ htc --forward-port 8001 tunnel.example.com:80
>>> $ ssh root at localhost -p 8001
>>> ssh_exchange_identification: Connection closed by remote host
>>
>> It looks like a tcpwrapper (/etc/hosts.allow, /etc/hosts.deny) issue. Do you
>> have enabled localhost for using sshd?
>>
>> Try to add a line like in /etc/hosts.allow
>>
>> sshd: 127.0.0.1: allow
>
> It can't be that because when I connect my HTTPTunnel Client directly
> on my tunnel server, it works! But, it doesn't works when the client
> requests pass by Varnish... Any other idea?

You will want to at least return (pipe); to forward ssh connections. I
really have no idea how Varnish will cope with that sort of traffic or
whether you'll have to up the timeouts to a ridiculous degree (and
perhaps cause stability problems elsewhere).

Laurence




More information about the varnish-misc mailing list