To achieve the same with a Mac / Linux machine, PuTTY is not necessary. Now press connect and enter your password. Open remote desktop and enter "localhost:3391" as "Computer" and "CERN\YourNICElogin" as "User name" This requires that you have setup a localforward to a machine inside CERN with the "Source port" as port "3391" and that PuTTY is open and connected. After this firefox should be back to normal. To stop using the proxy, select "Auto-detect proxy settings for this network". Select "Manual proxy configuration" and enter "localhost" as "SOCKS Host" and "1080" as "Port".Īfter clicking OK, you should be able to access sites that are normally not available outside CERN.Īs long as these setting are active, PuTTY has to stay open and connected to lxplus for your internet connection to work. Type "proxy" in the search box at the top of the page, and click the "Settings." button under "Network Settings" In Firefox, type "about:preferences" in the adress bar and press enter. If it looks like the picture underneath, it means that the tunnel is working.Ĭonfiguring applications to use the tunnelĪs long as the window from the previous section is open, a tunnel to CERN is active. Now go back to "Session" and press "Save", then "Open" Press "Add"Ĭonnect to cerntscryo (or another machine inside the CERN network):Įnter "3391" as "Source port", the name of the machine + ":3389" as "Destination" and select "Local", then press "Add" Dynamic forward (for Firefox):Įnter 1080 as "Source port", "localhost" as destination and select "Dynamic". Net localgroup administrators tunnel /add. In this case, we will create a new user, tunnel, and add it to the administrators group. The first step in setting up a tunnel is to create a dedicated user account to be used for the SSH connection. Next, go to the "Connection > Data" tab and enter your CERN username in the "Auto-login username"Ĭontinue to "Connection > SSH > Tunnels". Setting Up OpenSSH on the Windows Server. In order to avoid problems with this, go to the "Connection" tab and select IPv4 as "Internet protocol version" Orange / Sosh are currently having some issues with IPv6 in France ( OTG0055060). When opening PuTTY, you should see something like this:Įnter as Host Name, then choose a name for the connection and enter this in the Saved Sessions field. If you do not have PuTTY installed, it can be downloaded from this link. Note: it might take some time to create your AFS workspace if you are not already subscribed. These subscriptions can be handled from this page: In order for this to work, you need to be subscribed for AFS workspaces and LXPLUS and and Linux Services. Please see the bottom of the page for how to do the same with Mac / Linux. Now save this profile (ie- work-webserver) and when you want to connect to it load it and click connected it should log you into the office web server after it logs into the jumpbox silently.PuTTY is not necessary. You then want to go to Connection -> Data -> Proxy and set the Proxy Type to local and set the Telnet command or local-proxy-command to plink -load work-jumpbox -nc %host:%port\n (replace work-jumpbox with whatever you called your previous profile for the work linux box. Set this profile up with the correct host name/IP address and port of the webserver in the office. This process is achieved through your PuTTY. Furthermore, you can specify a port and a destination IP to have direct access. What you probably weren’t aware of is that you can use a dynamic tunnel to access all remote infrastructure. Most of you have probably used a tunnel with an SSH connection. With this setup you now want to setup a second profile for the box behind the work jumpbox. TUNNEL TO ACCESS ALL REMOTE INFRASTRUCTURE. Now save this profile and make note of the name you call it (ie- work-jumpbox). Then under Connection -> SSH -> Auth be sure that Allow agent forwarding is checked. You'll want to be sure under Connection -> Data that you set your Auto-login username. in the 'destination' you enter win7-box-name-or-ip:3389. then in 'connection'>'SSH'>'tunnels' put 60666 in the 'source port' field and make sure the Local radio button is selected. setup a putty connection to the linux box on your laptop. That said here is the steps to take.įirst, create a Putty connection profile for your work Linux box that you can reach from home. i think you can do all of the conf from your laptop. I would very much recommend setting up an SSH identity key and installing it on the boxes that you are connecting to and use the Putty Agent (pagent.exe) key forwarding agent. This is very possible with Putty though not as easy as with OpenSSH on a Linux machine.
0 Comments
Leave a Reply. |
AuthorWrite something about yourself. No need to be fancy, just an overview. ArchivesCategories |