Accessing LDAP through SSH tunnel

About

Asked 7/8, 2009 at 13:33 Answered 7/8, 2009 at 13:35

Solved network-programming tcp ssh ldap firewall

I got access via SSH (root access) to a Machine that's inside a network at my client's office.

I'm programming in my computer a PHP application that needs to integrate to LDAP. The LDAP server is in another server at my client's network and not accesible from outside, however I can perfectly access it via the server I can connect to via SSH.

My question is: IS there anyway I can make a tunnel and setup a port in my computer to get the traffic forwarded to the LDAP server using my SSH connection to one of the computers on the network?

Thanks!!!!

Cadre answered 7/8, 2009 at 13:33 Comment(0)

Yes, ssh has a "-L" option to create a tunnel. That option takes 3 parameters, separated by colons (:). Local listen port, remote host, remote port.

ssh -L 9999:ldapserver:389 user@otherhost

Where 9999 is the local port that the tunnel will be created on. The ldapserver:389 bit tells it where to connect to on the other side.

Then, tell your application to connect to localhost:9999 (or whatever port you choose) and it will be tunneled across.

Lackey answered 7/8, 2009 at 13:35 Comment(3)

you might also use the -N option, so ssh doesn't become interactive – Cradling 7/8, 2009 at 13:40

thanks! I got connection refused although with both optins but this may be another problem – Cadre 7/8, 2009 at 13:47

you need to tcp forwarding enabled on the remote ssh server. By default this is often disabled. In sshd_config put: AllowTcpForwarding yes – Disbursement 28/9, 2009 at 15:56

Hot tags

Godot Unity Godot Help Programming Godot 4.X GUI GDScript 3D 2D Physics CSharp Godot 3.X VR XR Projects C++

Recommended topics

Hot tags