Question: does SSF support 'outbound only server connections' ?

[SamVanhoutte]

Hello, Having a first quick look at this thing and I have to say it looks promising. I was wondering if a relay would work with a server that has outbound only internet connection. (i want to have a secure tunnel, relayed through a public cloud server, between two workstations that only have outbound internet connectivity). Would that be possible? (I'm very new to this)

[securesocketfunneling]

Hello,

You would like that a relay server act like a Rendez-Vous point ? C -> R <- S At the moment, this is not possible. Only the client knows the relay chain to use.

However, we think you could do such a relay with port forwarding (and some network piping...).

C3 -> (C2 -> (R <- C1)) -> S

C1 and S are on the same machine (10.0.0.1) C2 and C3 are on the same machine (192.168.0.1) R (1.2.3.4)

• Run S: ssfs 127.0.0.1
• Run R: ssfs
• Connect C1 to R and do a remote port forwarding from R local port (e.g. 10000) to S listening port (default is 8011): ssfc -R 10000:127.0.0.1:8011 1.2.3.4
• Connect C2 to R and do local port forwarding from a local port (9000) to R local port (127.0.0.1:10000): ssfc -L 9000:127.0.0.1:10000 1.2.3.4
• Connect C3 to local port 9000 ssfc -p 9000 127.0.0.1

The C3 local connection should be forwarded to S. However, this is not straightforward at all...

[thecek]

Hello there,

@securesocketfunneling , your comments worked like a charm.

I think this could be delivered as a tutorial btw, so ppl wont need to look after it here on issues.

[memiux]

Maybe you could also use tgcd http://tgcd.sourceforge.net/