From mboxrd@z Thu Jan 1 00:00:00 1970 MIME-Version: 1.0 In-Reply-To: <9553e1bc09b92fde0bc2a8f650742c9c@quintile.net> References: <9553e1bc09b92fde0bc2a8f650742c9c@quintile.net> Date: Tue, 10 Dec 2013 16:56:48 +0000 Message-ID: From: Conor Williams To: Fans of the OS Plan 9 from Bell Labs <9fans@9fans.net> Content-Type: multipart/alternative; boundary=089e014942f692c03704ed30ffe1 Subject: Re: [9fans] punching through firewalls... Topicbox-Message-UUID: 9600c158-ead8-11e9-9d60-3106f5b1d025 --089e014942f692c03704ed30ffe1 Content-Type: text/plain; charset=ISO-8859-1 ---- I will take a look at coding in the -R flag for this Steve... Gonna take a while as I will have to re-up my Plan 9 network... ... or is that it?? cw5 ---- ...thing you'll want to do is ssh into your server but this time we're going to pass a -R flag and a port number. That flag "Specifies that the given port on the remote (server) host is to be forwarded to the given host and port on the local side." Basically a reverse tunnel.. http://www.hackido.com/2009/06/quick-tip-set-up-reverse-ssh-tunnel.html On Tue, Dec 10, 2013 at 3:06 PM, Steve Simon wrote: > Hi, > > In order to get remote access through a firewall I > currently have a script which I run on the inside > of the firewall which posts a file descriptor I > can mount from home. > > while(~ true true){ > cpu -h home -c 'rm -f /srv/work ; srvfs work /mnt/term ; while() > sleep 600 '>[2] /dev/null > sleep 10 > } > > so at home I just: > > mount /srv/work /n/work > bind /n/work/net /net.alt > > This works but the performance is not great espicially > if I cpu into the work machine from home: > > cpu -u /net.alt/tcp!work > > I assume the lack of zip is due to the multiple 9p round > trips necessary to establish the connection. > > Is there a more elegant, and hopefully more performant way of > do this using import -B? > > failing that any other techniques? > > sadly ssh -R isn't very useful on plan9 (I think). > > -Steve > > --089e014942f692c03704ed30ffe1 Content-Type: text/html; charset=ISO-8859-1 Content-Transfer-Encoding: quoted-printable
----
I will take a look at coding in the -R flag for this Steve...
Gonna take a while as I will have to re-up my Plan 9 network...
... or is that it??
cw5
----
...thing you'll want to do is ssh into your server but this time w= e're going to pass a -R flag and a port number. That flag "Specifi= es that the given port on the remote (server) host is to be forwarded to th= e given host and port on the local side." Basically a reverse tunnel..=
http://www.hackido.com/2009/06/quick-tip-set-up-reverse-ssh-t= unnel.html


=A0
On Tue, Dec 10, 2013 at 3:06 PM, Steve Simon <= steve@quintile.net> wrote:
Hi,

In order to get remote acc= ess through a firewall I
currently have a script which I run on the insi= de
of the firewall which posts a file descriptor I
can mount from home.
=
while(~ true true){
=A0 =A0 =A0 =A0 cpu -h home -c 'rm -f /srv/w= ork ; srvfs work /mnt/term ; while() sleep 600 '>[2] /dev/null
= =A0 =A0 =A0 =A0 sleep 10
}

so at home I just:

=A0 =A0 =A0 =A0 mount /srv/work /n/work<= br>=A0 =A0 =A0 =A0 bind /n/work/net /net.alt

This works but the perf= ormance is not great espicially
if I cpu into the work machine from home= :

=A0 =A0 =A0 =A0 cpu -u /net.alt/tcp!work

I assume the lack of zip is due to the multiple 9p round
trips neces= sary to establish the connection.

Is there a more elegant, and hopef= ully more performant way of
do this using import -B?

failing that= any other techniques?

sadly ssh -R isn't very useful on plan9 (I think).

-Steve


--089e014942f692c03704ed30ffe1--