Bugzilla – Attachment 792 Details for
Bug 413
Port forwarding: [localhost:]localport:remotehost:remoteport
Home
|
New
|
Browse
|
Search
|
[?]
|
Reports
|
Requests
|
Help
|
New Account
|
Log In
[x]
|
Forgot Password
Login:
[x]
[patch]
Man page updates
4forwardman.diff (text/plain), 3.74 KB, created by
Damien Miller
on 2005-01-29 23:46:04 AEDT
(
hide
)
Description:
Man page updates
Filename:
MIME Type:
Creator:
Damien Miller
Created:
2005-01-29 23:46:04 AEDT
Size:
3.74 KB
patch
obsolete
>Index: ssh.1 >=================================================================== >RCS file: /cvs/src/usr.bin/ssh/ssh.1,v >retrieving revision 1.199 >diff -u -p -r1.199 ssh.1 >--- ssh.1 7 Nov 2004 17:42:36 -0000 1.199 >+++ ssh.1 29 Jan 2005 12:45:59 -0000 >@@ -69,6 +69,7 @@ > .Ek > .Oo Fl R Xo > .Sm off >+.Oo Ar bind_address : Oc > .Ar port : > .Ar host : > .Ar hostport >@@ -724,6 +725,7 @@ Quiet mode. > Causes all warning and diagnostic messages to be suppressed. > .It Fl R Xo > .Sm off >+.Oo bind_address : Oc > .Ar port : host : hostport > .Sm on > .Xc >@@ -738,16 +740,34 @@ made to > port > .Ar hostport > from the local machine. >+.Pp > Port forwardings can also be specified in the configuration file. > Privileged ports can be forwarded only when > logging in as root on the remote machine. >-IPv6 addresses can be specified with an alternative syntax: >-.Sm off >+IPv6 addresses can be specified by enclosing the address in square braces or >+using an alternative syntax: > .Xo >-.Ar port No / Ar host No / >-.Ar hostport . >-.Xc >+.Sm off >+.Oo Ar bind_address / Oc >+.Ar host/port/hostport > .Sm on >+.Xc . >+.Pp >+By default, the listening socket on the server will be bound to the loopback >+interface only. >+This may be overriden by specifying a >+.Ar bind_address . >+An empty >+.Ar bind_address , >+or the address >+.Ql * >+indicates that the remote socket should listen on all interfaces. >+Specifying a remote >+.Ar bind_address >+will only succeed if the server's >+.Cm GatewayPorts >+option is enabled (see >+.Xr sshd_config 5 ). > .It Fl S Ar ctl_path > Specifies the location of a control socket for connection sharing. > Refer to the description of >Index: ssh_config.5 >=================================================================== >RCS file: /cvs/src/usr.bin/ssh/ssh_config.5,v >retrieving revision 1.41 >diff -u -p -r1.41 ssh_config.5 >--- ssh_config.5 28 Jan 2005 18:14:09 -0000 1.41 >+++ ssh_config.5 29 Jan 2005 12:45:59 -0000 >@@ -587,12 +587,39 @@ This option applies to protocol version > Specifies that a TCP/IP port on the remote machine be forwarded over > the secure channel to the specified host and port from the local machine. > The first argument must be a port number, and the second must be >-.Ar host:port . >-IPv6 addresses can be specified with an alternative syntax: >-.Ar host/port . >+.Xo >+.Sm off >+.Oo Ar bind_address : Oc >+.Ar host:port >+.Sm on >+.Xc . >+IPv6 addresses can be specified by enclosing any addresses in square brackets >+or by using the alternative syntax: >+.Xo >+.Sm off >+.Oo Ar bind_address / Oc >+.Ar host/port >+.Sm on >+.Xc . > Multiple forwardings may be specified, and additional > forwardings can be given on the command line. > Only the superuser can forward privileged ports. >+.Pp >+If the >+.Ar bind_address >+is not specified, the default is to only bind to loopback addresses. >+If the >+.Ar bind_address >+is >+.Ql * >+or an empty string, then the forwarding is requested to listen on all >+interfaces. >+Specifying a remote >+.Ar bind_address >+will only succeed if the server's >+.Cm GatewayPorts >+option is enabled (see >+.Xr sshd_config 5 ). > .It Cm RhostsRSAAuthentication > Specifies whether to try rhosts based authentication with RSA host > authentication. >Index: sshd_config.5 >=================================================================== >RCS file: /cvs/src/usr.bin/ssh/sshd_config.5,v >retrieving revision 1.38 >diff -u -p -r1.38 sshd_config.5 >--- sshd_config.5 8 Jan 2005 00:41:19 -0000 1.38 >+++ sshd_config.5 29 Jan 2005 12:45:59 -0000 >@@ -256,8 +256,8 @@ This prevents other remote hosts from co > .Cm GatewayPorts > can be used to specify that > .Nm sshd >-should bind remote port forwardings to the wildcard address, >-thus allowing remote hosts to connect to forwarded ports. >+should allow remote port forwardings to bind to non-loopback addresses, thus >+allowing other hosts to connect. > The argument must be > .Dq yes > or
<b>You cannot view the attachment while viewing its details because your browser does not support IFRAMEs. <a href="attachment.cgi?id=792">View the attachment on a separate page</a>.</b>
View Attachment As Diff
View Attachment As Raw
Actions:
View
|
Diff
Attachments on
bug 413
:
179
|
180
|
182
|
217
|
219
|
229
|
321
|
666
|
782
|
783
|
784
|
791
|
792
|
806
|
834