![]() The program that we are going to use is Putty, it is a Windows program, but in Linux it works perfectly using the WINE utility. ![]() Once we have the SSH server running, we proceed to configure the client. This SSH tunnel that we are going to create only encrypts the communications if we configure a Proxy in our browser, the tests have been done with Firefox. This method does not encrypt the services of MSN, Skype, or similar if we have not previously configured in these programs the use of a proxy server. If we want to encrypt absolutely EVERYTHING, including these services, we must follow the How to create OpenVPN. In this tutorial I will explain how to create an SSH tunnel and be able to surf the web in a secure way as if we were in our home. The tutorial that I present is valid for both Windows and Linux, although in Linux there is a command that saves you many unnecessary steps. Browsing The Web Through An SSH Tunnel (Putty / Firefox) If all you need to secure is your web browsing, there is a simple alternative: a SOCKS 5 proxy tunnel. The simple solution is a VPN, but most VPNs requires a client software on your PC, and you may not have administrative rights to install the software. You want to access it with secure way that no one in the middle can watch the traffic. To achieve the same with a Mac / Linux machine, PuTTY is not necessary.Sometimes you are in a network which is insecure or with an overly-restrictive firewall, and you want to access a web site. Now press connect and enter your password. Open remote desktop and enter "localhost:3391" as "Computer" and "CERN\YourNICElogin" as "User name" This requires that you have setup a localforward to a machine inside CERN with the "Source port" as port "3391" and that PuTTY is open and connected. After this firefox should be back to normal. To stop using the proxy, select "Auto-detect proxy settings for this network". ![]() Select "Manual proxy configuration" and enter "localhost" as "SOCKS Host" and "1080" as "Port".Īfter clicking OK, you should be able to access sites that are normally not available outside CERN.Īs long as these setting are active, PuTTY has to stay open and connected to lxplus for your internet connection to work. Type "proxy" in the search box at the top of the page, and click the "Settings." button under "Network Settings" In Firefox, type "about:preferences" in the adress bar and press enter. If it looks like the picture underneath, it means that the tunnel is working.Ĭonfiguring applications to use the tunnelĪs long as the window from the previous section is open, a tunnel to CERN is active. Now go back to "Session" and press "Save", then "Open" Press "Add"Ĭonnect to cerntscryo (or another machine inside the CERN network):Įnter "3391" as "Source port", the name of the machine ":3389" as "Destination" and select "Local", then press "Add" Dynamic forward (for Firefox):Įnter 1080 as "Source port", "localhost" as destination and select "Dynamic". Next, go to the "Connection > Data" tab and enter your CERN username in the "Auto-login username"Ĭontinue to "Connection > SSH > Tunnels". ![]() In order to avoid problems with this, go to the "Connection" tab and select IPv4 as "Internet protocol version" Orange / Sosh are currently having some issues with IPv6 in France ( OTG0055060). When opening PuTTY, you should see something like this:Įnter as Host Name, then choose a name for the connection and enter this in the Saved Sessions field. If you do not have PuTTY installed, it can be downloaded from this link. Note: it might take some time to create your AFS workspace if you are not already subscribed. These subscriptions can be handled from this page: In order for this to work, you need to be subscribed for AFS workspaces and LXPLUS and and Linux Services. Please see the bottom of the page for how to do the same with Mac / Linux. ![]()
0 Comments
Leave a Reply. |
AuthorWrite something about yourself. No need to be fancy, just an overview. ArchivesCategories |