Web Tunnelling over SSH

Not new information but all the same useful for either secure traffic or bypassing web cache restrictions.

First example is a socks proxy to allow you to secure web traffic over a wifi link or just avoiding web caching filters.

From unix, linux, *BSD or MacOSX type in :

ssh -N name@ssh_server -D 9999

or from windows download plink.exe from http://www.chiark.greenend.org.uk/~sgtatham/putty/ (putty.exe is also a must). The command from windows is :

plink -N -D 9999 name@ssh_server

What this does it to open an encrypted tunnel with an entry point of Localhost:9999.

Once the connection is established you then configure your web browser to use a socks proxy of Localhost port 9999. You web traffic will be tunneled over an encrypted link to the server ssh_server.

An additional security step you can use from Firefox is to get the dns resolution of the site done at the remote end instead of locally. In this way you can browse intra-net web sites over the SSH link.

For Firefox in the about:config page change network.proxy.socks_remote_dns to true

This entry was posted in Security. Bookmark the permalink.