[Top][All Lists]
[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]
Re: CVS over SSH on different port
From: |
Mark D. Baushke |
Subject: |
Re: CVS over SSH on different port |
Date: |
Tue, 26 Oct 2004 00:04:59 -0700 |
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1
Gaurav Vaish <address@hidden> writes:
> Hi,
>
> I want to enable port forwarding for the CVS (over SSH).
>
> But at the same time, I have sshd running on the firewall server. As
> such, I can have port 22 (on firewall) for connecting to the CVS.
>
> How can I achieve my target?
Your problem statement is not 100% clear to me. Let me restate what I
think you want.
Background: The host cvs.my.network.net is internal to my firewall.
My cvs repository of interest that I use internally
looks like :ext:cvs.my.network.net:/path/to/cvsroot
The host firewall.network.net is the external firewall and
allows me to establish port forwarding to internal hosts
via an SSH connection.
Problem: How do I configure things with my CVSROOT and SSH
configuration to allow me to checkout and commit to
foo.my.network.net from my.laptop.somewhere.com that must
go thru an SSH tunnel on the firewall.network.net in order
to get to the cvs.my.network.net host.
Suggested workaround:
Created a $HOME/.ssh/config entry something like this:
Host cvsserver
HostKeyAlias cvs.my.network.net
Hostname cvs.my.network.net
ProxyCommand ssh firewall.network.net nc %h 22
You could do something like the following:
export CVS_RSH=ssh
export CVSROOT=:ext:cvsserver/path/to/cvsroot
cvs checkout module
This assumes that you have the 'nc' program
(http://www.atstake.com/research/tools/network_utilities/)
If you are not able to use nc, then something like the following might
work for you...
In your $HOME/.ssh/config file put something like this:
Host cvsserver2
HostKeyAlias cvs.my.network.net
Hostname localhost
Port 8822
Then, in one window do a command like this:
ssh -L 8822:cvs.my.network.net:22 firewall.network.net
and in another window
export CVS_RSH=ssh
export CVSROOT=:ext:cvsserver2/path/to/cvsroot
cvs checkout module
There are probably other ways to address the above solutions, but this
may be a reasonable place to start.
If I did not understand your question, then you may wish to read
something like this:
http://quark.humbug.org.au/publications/ssh/ssh-port-forward.html
to help you understand better what you can do.
Good luck,
-- Mark
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.2.3 (FreeBSD)
iD8DBQFBffcb3x41pRYZE/gRAhr6AKDbQ9Y4o3wb+ulcqIVTXHo2PLWoDQCfRyb9
+Q0xloAdb4oUTExNhBjO2nM=
=i2jz
-----END PGP SIGNATURE-----