On 08/26/2013 04:06 PM, zekeb wrote:
> I just replaced Mageia with openSUSE on my home computer. My work
> machine is behind a firewall and is running Mageia. I have a script
> that runs autossh to establish a reverse tunnel from port 22 on the work
> machine on port 2210 on my home machine.
I presume by this you mean that the connection is setup from 2210 at home
to 22 at work only, and it is initialized by connecting home via some
other method that isn’t blocked as much as connecting to work would be.
Please confirm that this assumption is correct.
> I had RSA keys in place to automate the tunnel.
> When I got to work I could ssh into my SUSE box at home with no
> problem, no password - the RSA keys did the trick.
Not using any tunnels… this seems to be fine. Just calling that out to
be sure I understand the issue.
> When I try to ssh to port 2210 on my home machine I get the following:
Just to be really clear, I assume you are running this command FROM the
home machine, as you have SSH’d from work to home and are now SSHing to
TCP 2210 on your home machine, which should be a reverse tunnel back to 22
at work. If that is incorrect please correct me. An alternative may be
to SSH directly to TCP 2210 from anywhere (in the world, assuming your box
is open to the world) which I would expect NOT to work, but I would also
expect it to not get as far as you showed below in the debugging output.
The reason the exact method matters to me is I am not sure how you have
setup keys. YOu said “I had RSA keys in place to automate the tunnel”
which, to me, means you have a private key on your work box to automate
the tunnel created when you SSH to your home box (public key previously
placed there on the home box), and that is fine. That, though, does not
mean you have setup a private key on your home box which can SSH to your
work box, or a private key on your work box that could access your home
box’s tunnel accessing the work box. Only the first situation, of those
three, should work as I’m reading this unless you also setup keys from
home to work and are now accessing work, from the home box, via the
work-box-established reverse tunnel.