From owner-freebsd-questions@FreeBSD.ORG Sun Jun 1 16:51:36 2003 Return-Path: Delivered-To: freebsd-questions@freebsd.org Received: from mx1.FreeBSD.org (mx1.freebsd.org [216.136.204.125]) by hub.freebsd.org (Postfix) with ESMTP id DB80437B401 for ; Sun, 1 Jun 2003 16:51:36 -0700 (PDT) Received: from sccrmhc02.attbi.com (sccrmhc02.attbi.com [204.127.202.62]) by mx1.FreeBSD.org (Postfix) with ESMTP id 1706243F93 for ; Sun, 1 Jun 2003 16:51:36 -0700 (PDT) (envelope-from freebsd-questions-local@be-well.no-ip.com) Received: from be-well.ilk.org (lowellg.ne.client2.attbi.com[24.147.188.198]) by attbi.com (sccrmhc02) with ESMTP id <2003060123513500200b7p25e>; Sun, 1 Jun 2003 23:51:35 +0000 Received: from be-well.ilk.org (lowellg.ne.client2.attbi.com [24.147.188.198] (may be forged)) by be-well.ilk.org (8.12.9/8.12.7) with ESMTP id h51NpYOA058720; Sun, 1 Jun 2003 19:51:34 -0400 (EDT) (envelope-from freebsd-questions-local@be-well.no-ip.com) Received: (from lowell@localhost) by be-well.ilk.org (8.12.9/8.12.6/Submit) id h51NpUU7058717; Sun, 1 Jun 2003 19:51:30 -0400 (EDT) X-Authentication-Warning: be-well.ilk.org: lowell set sender to freebsd-questions-local@be-well.ilk.org using -f Sender: lowell@be-well.no-ip.com To: Daniela References: <200305310030.58636.dgw@liwest.at> From: Lowell Gilbert Date: 01 Jun 2003 19:51:30 -0400 In-Reply-To: <200305310030.58636.dgw@liwest.at> Message-ID: <44of1h5pbx.fsf@be-well.ilk.org> Lines: 23 User-Agent: Gnus/5.09 (Gnus v5.9.0) Emacs/21.3 MIME-Version: 1.0 Content-Type: text/plain; charset=us-ascii cc: questions@freebsd.org Subject: Re: Complicated routing/SSH-FTP tunneling problem X-BeenThere: freebsd-questions@freebsd.org X-Mailman-Version: 2.1.1 Precedence: list List-Id: User questions List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Sun, 01 Jun 2003 23:51:37 -0000 Daniela writes: > I have the following problem: > > I'm running a FreeBSD SSH server. > Some clients can't connect to it. They are on a local network, connected to > the internet through another server. This second server used to allow SSH > login, and users could then connect to my server from the second server. > > On the second server, SSH login isn't allowed any more. It won't route any > requests to the outside, except for mail. The FTP port is open, however. I > heard it is possible to create a tunnel over FTP, so the clients could still > get to my server. > > How could we do this (if it is possible)? Are there other ways? You need some kind of cooperation from the other server. It sounds like you're trying to get around security precautions of the other server, but if that's not the case, you ought to work this out with the administrator of the other server. You can't create an IP tunnel over an FTP server; at least, not using any FTP server software I know well...