11/23/2023 0 Comments Windows ssh tunnel all traffic![]() ![]() If you tell the VNC client to connect to server:5900 instead, you are telling it to bypass the tunnel you set up for it, and just connect directly without the benefit of SSH encryption. Or in other words, you must tell the VNC client to connect to localhost:5900 to connect to the server using the encrypted tunnel. To successfully use the tunnel, you must understand that you can now reach the server's port 5900 by connecting to your client system's local port 5900. Port forwarding is the reason why SSH can be used to protect other programs that have no built-in support for SSH nor any kind of a special interface to it. You can always forward things from your local system's localhost to the remote system's localhost (or vice versa, using -R instead of -L). This is why your sentence "But I only have a Server and a client so cannot use forwarding" makes no sense. This is not the localhost of your local system, but localhost of the server system. the output end of the tunnel on the server system will again pass the traffic onwards in its original unencrypted form, to localhost:5900 as the server system sees it.the encrypted tunnel will go from your local client system to the server system.the listening side of the tunnel will be on port 5900 on your system (= the first 5900). ![]()
0 Comments
Leave a Reply. |
AuthorWrite something about yourself. No need to be fancy, just an overview. ArchivesCategories |