On 09/08/2016 01:16 PM, gumb wrote: u.
But how, in that case, IF there were multiple machines at the remote end (which there aren't, but I might at some point want to SSH in reverse back home where I do have more than one device, which is why I want to be sure of the theory), would the router know which machine I'm trying to SSH into?
Please read the theory of redirection. Please also re-read greg's post and the followup I did expanding on his post.
Are you saying that in principle the traffic is always entering via port 22 on the router regardless of what I specify in my config, but after that the port number is read in order to reach the correct device? Or are you saying my config file should specify Port 22 (which would be default so no need to specify explicitly). In which case, I don't understand the next step to get to the right machine.
There are many modes that ssh/sshd can operate in. Let's not go into the other ones. basically, if you are using a single redirection in a simple -- as you say 'primitive' -- router like this, it redirects one incoming port to one host:port. THAT IS IT. But as Greg points out you have multiple redirections
port 2222 => IP1:22 port 2223 => IP2:22 port 2224 => IP3:22 etc.
Then on the client side you just specify the alternate port used on the router (2222, 2223, 2224, ....)
You ask
If I'm supposed to address port 22 then where and how do I specify machine-a or machine-b?
Re-read the above. host a: address remote port 2222 host b: address remote port 2223 ....
OBTW do not fiddle with the hosts.allow. Leave it empty.
Too late. I edited that long ago on the server side. However, on my recent visit there, I was trying to SSH in from my laptop on the network and it failed. Since this router is a replacement for one that had burnt out, I'd forgotten that I'd updated the static IP of the machines to 192.168.1.x instead of 192.168.0.x, since the IP gateway is 192.168.1.254. When I modified the server's hosts.allow file accordingly all was well. So although it's apparently an antiquated concept, it's one that works.
It's not simply antiquated it can potentially get in teh way of other thngs. -- A: Yes. > Q: Are you sure? >> A: Because it reverses the logical flow of conversation. >>> Q: Why is top posting frowned upon? -- To unsubscribe, e-mail: opensuse+unsubscribe@opensuse.org To contact the owner, e-mail: opensuse+owner@opensuse.org