How to make SSH remote port forward that listens 0.0.0.0

ssh portforwarding
ceremcem picture ceremcem · May 21, 2014 · Viewed 12.6k times · Source

I need to do remote port forwarding that will listen 0.0.0.0 instead of 127.0.0.1 on the remote machine so that I can connect from outside internet to IP_OF_BBB:SOME_PORT in order to connect to SSH port of AAA.

I managed to make this happen by the following:

  1. AAA:~$ ssh -R 22:localhost:2222 user@BBB
  2. BBB:~$ ssh -L 2222:*:2223 user@localhost

Now I can connect to AAA with this command:

ssh user@BBB -p 2223

The local port forwarding is a workaround, of course. Is there any clearer way to do this?

Answer

Linville picture Linville · May 21, 2014

Enable GatewayPorts in sshd_config (by default it is disabled). Enabling it will instruct sshd to allow remote port forwardings to bind to a non-loopback address. AskUbuntu has a similar question about Reverse Port Tunneling that goes into more details.

Related questions

SSH -L connection successful, but localhost port forwarding not working "channel 3: open failed: connect failed: Connection refused"

My lab runs RStudio on a server. A couple weeks ago, from my cousin's house, I successfully ssh'd into the server and pulled up the server-side RStudio through my local Firefox browser. Now when I try to access the server …

Read More
ssh -L forward multiple ports

I'm currently running a bunch of: sudo ssh -L PORT:IP:PORT root@IP where IP is the target of a secured machine, and PORT represents the ports I'm forwarding. This is because I use a lot of applications which …

Read More
PuTTY configuration equivalent to OpenSSH ProxyCommand

I'm just trying to use PuTTY to get an SSH connection to my servers. These servers allow incoming SSH connection only from another specific server ("MySshProxyingServer" in example below). Using Linux this is no problem with the ssh -W command. …

Read More