[Box Backup] bbstored/bbackupd communication ports

Chris Wilson boxbackup@fluffy.co.uk
Wed, 19 Jan 2005 23:27:59 +0000 (GMT)


Hi Robert,

> 1. Open port 2201 on my router to allow homeserver:2201 access from the 
> outside.
> 2. ssh workserver -L 2201:homeserver:2201
> 3. This works.

Since you have to open port 2201, this would indicate that your bbackupd 
is still connecting to homeserver. You need to reconfigure it to connect 
to "localhost" instead. Otherwise you're not using the tunnel you just 
created.

> 1. Close port 2201 on my router to not allow homeserver:2201 access from 
> outside.
> 2. ssh workserver -L 8022:homeserver:22
> 3. ssh -p 8022 laptop -L 2201:localhost:2201
> 4. This does not work.

This doesn't look correct to me. Does your network look something like 
this?

 	[laptop]--[workserver]--{internet}--[homerouter]<--[homeserver]
 					    |		   ^
 					    v		   |
 					    port 22------->port 22

If so, you probably want to do something like this, assuming that 
homeserver doesn't have a public IP address, so it's not directly 
reachable from workserver, BUT you have forwarded port 22 on homerouter to 
homeserver:

 	laptop# ssh workserver -L 8022:homerouter:22
 	laptop# ssh workserver -p 8022 -L 2201:localhost:2201

then you should be able to telnet to port 2201 on laptop, and end up 
connected to port 2201 on homeserver, without opening any ports on 
homerouter except port 22 for SSH.

Does that work?

If not, could you provide a network diagram?

Cheers, Chris.
-- 
_ ___ __     _
  / __/ / ,__(_)_  | Chris Wilson <0000 at qwirx.com> - Cambs UK |
/ (_/ ,\/ _/ /_ \ | Security/C/C++/Java/Perl/SQL/HTML Developer |
\ _/_/_/_//_/___/ | We are GNU-free your mind-and your software |