sshNote.txt Bikle ------------ Here is some syntax from the ssh man page: NAME ssh - OpenSSH secure shell client (remote login program) SYNOPSIS ssh [-l login_name] [ hostname | user@hostname] [ com- mand] ssh -afgknqtvxACNPTX246 [-c cipher_spec] [-e escape_char] [-i identity_file] [-l login_name] [-o option] [-p port] [-L port:host:hostport] [-R port:host:hostport] [hostname | user@hostname] [command] -c 3des-cbc,blowfish-cbc,aes128-cbc Additionally, for protocol version 2 a comma-separated list of ciphers can be specified in order of prefer- ence. Protocol version 2 supports 3DES, Blowfish, and AES 128 in CBC mode. -C Requests compression of all data (including stdin, stdout, stderr, and data for forwarded X11 and TCP/IP connections). The compression algorithm is the same used by gzip(1). (The gzip man page is available in the SUNWsfman package.) The "level" can be controlled by the CompressionLevel option (see below). Compres- sion is desirable on modem lines and other slow con- nections, but will only slow down things on fast net- works. The default value can be set on a host-by-host basis in the configuration files. See the Compress option below. -L port:host:hostport Specifies that the given port on the local (client) host is to be forwarded to the given host and port on the remote side. This works by allocating a socket to listen to the port on the local side. Then, whenever a connection is made to this port, the connection is forwarded over the secure channel and a connection is made to host port hostport from the remote machine. Port forwardings can also be specified in the confi- guration file. Only root can forward privileged ports. IPv6 addresses can be specified with an alternative syntax: port/host/hostport. Here is some syntax which I saw demonstrated which implemented port fowarding: ssh -C -c 3des-cbc -L7777:dbhost.bikle.com:7777 root@desktop.bikle.com I then access a webserver listening on 7777 from desktop.bikle.com via: http://localhost:7777