[NTLUG:Discuss] ssh port forwarding revisted...
Chris Cox
cjcox at acm.org
Wed Aug 21 16:59:21 CDT 2002
Kenneth Loafman wrote:
>Chris Cox wrote:
>
>><snip>
>>
>>This would establish a 110 pop port that SSL tunnels to the secure
>>pop at attbi.com. I access my AT&T email this way from work
>>all of the time.
>>
>
>One question that has me curious... if you can redirect ports using
>IPChains and IPWhatsit (forgot name), why not just redirect in the
>kernel rather than running a completely separate process?
>
In this case, the guy wants either a direct SSL tunnel or an
encrypted ssh (perhaps port 22 is the only thing he leaves
open on his box at home) tunnel.... so in this case there
was a need for the extra process.
Doing everything with the kernel is not a great idea anyway...
especially if the work can be done in userland.
iptables was the word you were searching for.
More information about the Discuss
mailing list