<!DOCTYPE html>
< html lang = "en" >
< head >
< meta charset = "UTF-8" >
< meta http-equiv = "X-UA-Compatible" content = "IE=edge" >
< meta name = "viewport" content = "width=device-width, initial-scale=1.0" >
< meta name = "generator" content = "Asciidoctor 2.0.10" >
< meta name = "description" content = "Intro and Install" >
< meta name = "keywords" content = "sec, tcpdump" >
< meta name = "author" content = "Apostolos rootApostolos@swarmlab.io" >
< title > SSH Tunneling!< / title >
< link rel = "stylesheet" href = "https://fonts.googleapis.com/css?family=Open+Sans:300,300italic,400,400italic,600,600italic%7CNoto+Serif:400,400italic,700,700italic%7CDroid+Sans+Mono:400,700" >
< style >
/* Asciidoctor default stylesheet | MIT License | https://asciidoctor.org */
/* Uncomment @import statement to use as custom stylesheet */
/*@import "https://fonts.googleapis.com/css?family=Open+Sans:300,300italic,400,400italic,600,600italic%7CNoto+Serif:400,400italic,700,700italic%7CDroid+Sans+Mono:400,700";*/
article,aside,details,figcaption,figure,footer,header,hgroup,main,nav,section{display:block}
audio,video{display:inline-block}
audio:not([controls]){display:none;height:0}
html{font-family:sans-serif;-ms-text-size-adjust:100%;-webkit-text-size-adjust:100%}
a{background:none}
a:focus{outline:thin dotted}
a:active,a:hover{outline:0}
h1{font-size:2em;margin:.67em 0}
abbr[title]{border-bottom:1px dotted}
b,strong{font-weight:bold}
dfn{font-style:italic}
hr{-moz-box-sizing:content-box;box-sizing:content-box;height:0}
mark{background:#ff0;color:#000}
code,kbd,pre,samp{font-family:monospace;font-size:1em}
pre{white-space:pre-wrap}
q{quotes:"\201C" "\201D" "\2018" "\2019"}
small{font-size:80%}
sub,sup{font-size:75%;line-height:0;position:relative;vertical-align:baseline}
sup{top:-.5em}
sub{bottom:-.25em}
img{border:0}
svg:not(:root){overflow:hidden}
figure{margin:0}
fieldset{border:1px solid silver;margin:0 2px;padding:.35em .625em .75em}
legend{border:0;padding:0}
button,input,select,textarea{font-family:inherit;font-size:100%;margin:0}
button,input{line-height:normal}
button,select{text-transform:none}
button,html input[type="button"],input[type="reset"],input[type="submit"]{-webkit-appearance:button;cursor:pointer}
button[disabled],html input[disabled]{cursor:default}
input[type="checkbox"],input[type="radio"]{box-sizing:border-box;padding:0}
button::-moz-focus-inner,input::-moz-focus-inner{border:0;padding:0}
textarea{overflow:auto;vertical-align:top}
table{border-collapse:collapse;border-spacing:0}
*,*::before,*::after{-moz-box-sizing:border-box;-webkit-box-sizing:border-box;box-sizing:border-box}
html,body{font-size:100%}
body{background:#fff;color:rgba(0,0,0,.8);padding:0;margin:0;font-family:"Noto Serif","DejaVu Serif",serif;font-weight:400;font-style:normal;line-height:1;position:relative;cursor:auto;tab-size:4;-moz-osx-font-smoothing:grayscale;-webkit-font-smoothing:antialiased}
a:hover{cursor:pointer}
img,object,embed{max-width:100%;height:auto}
object,embed{height:100%}
img{-ms-interpolation-mode:bicubic}
.left{float:left!important}
.right{float:right!important}
.text-left{text-align:left!important}
.text-right{text-align:right!important}
.text-center{text-align:center!important}
.text-justify{text-align:justify!important}
.hide{display:none}
img,object,svg{display:inline-block;vertical-align:middle}
textarea{height:auto;min-height:50px}
select{width:100%}
.center{margin-left:auto;margin-right:auto}
.stretch{width:100%}
.subheader,.admonitionblock td.content>.title,.audioblock>.title,.exampleblock>.title,.imageblock>.title,.listingblock>.title,.literalblock>.title,.stemblock>.title,.openblock>.title,.paragraph>.title,.quoteblock>.title,table.tableblock>.title,.verseblock>.title,.videoblock>.title,.dlist>.title,.olist>.title,.ulist>.title,.qlist>.title,.hdlist>.title{line-height:1.45;color:#7a2518;font-weight:400;margin-top:0;margin-bottom:.25em}
div,dl,dt,dd,ul,ol,li,h1,h2,h3,#toctitle,.sidebarblock>.content>.title,h4,h5,h6,pre,form,p,blockquote,th,td{margin:0;padding:0;direction:ltr}
a{color:#2156a5;text-decoration:underline;line-height:inherit}
a:hover,a:focus{color:#1d4b8f}
a img{border:0}
p{font-family:inherit;font-weight:400;font-size:1em;line-height:1.6;margin-bottom:1.25em;text-rendering:optimizeLegibility}
p aside{font-size:.875em;line-height:1.35;font-style:italic}
h1,h2,h3,#toctitle,.sidebarblock>.content>.title,h4,h5,h6{font-family:"Open Sans","DejaVu Sans",sans-serif;font-weight:300;font-style:normal;color:#ba3925;text-rendering:optimizeLegibility;margin-top:1em;margin-bottom:.5em;line-height:1.0125em}
h1 small,h2 small,h3 small,#toctitle small,.sidebarblock>.content>.title small,h4 small,h5 small,h6 small{font-size:60%;color:#e99b8f;line-height:0}
h1{font-size:2.125em}
h2{font-size:1.6875em}
h3,#toctitle,.sidebarblock>.content>.title{font-size:1.375em}
h4,h5{font-size:1.125em}
h6{font-size:1em}
hr{border:solid #dddddf;border-width:1px 0 0;clear:both;margin:1.25em 0 1.1875em;height:0}
em,i{font-style:italic;line-height:inherit}
strong,b{font-weight:bold;line-height:inherit}
small{font-size:60%;line-height:inherit}
code{font-family:"Droid Sans Mono","DejaVu Sans Mono",monospace;font-weight:400;color:rgba(0,0,0,.9)}
ul,ol,dl{font-size:1em;line-height:1.6;margin-bottom:1.25em;list-style-position:outside;font-family:inherit}
ul,ol{margin-left:1.5em}
ul li ul,ul li ol{margin-left:1.25em;margin-bottom:0;font-size:1em}
ul.square li ul,ul.circle li ul,ul.disc li ul{list-style:inherit}
ul.square{list-style-type:square}
ul.circle{list-style-type:circle}
ul.disc{list-style-type:disc}
ol li ul,ol li ol{margin-left:1.25em;margin-bottom:0}
dl dt{margin-bottom:.3125em;font-weight:bold}
dl dd{margin-bottom:1.25em}
abbr,acronym{text-transform:uppercase;font-size:90%;color:rgba(0,0,0,.8);border-bottom:1px dotted #ddd;cursor:help}
abbr{text-transform:none}
blockquote{margin:0 0 1.25em;padding:.5625em 1.25em 0 1.1875em;border-left:1px solid #ddd}
blockquote cite{display:block;font-size:.9375em;color:rgba(0,0,0,.6)}
blockquote cite::before{content:"\2014 \0020"}
blockquote cite a,blockquote cite a:visited{color:rgba(0,0,0,.6)}
blockquote,blockquote p{line-height:1.6;color:rgba(0,0,0,.85)}
@media screen and (min-width:768px){h1,h2,h3,#toctitle,.sidebarblock>.content>.title,h4,h5,h6{line-height:1.2}
h1{font-size:2.75em}
h2{font-size:2.3125em}
h3,#toctitle,.sidebarblock>.content>.title{font-size:1.6875em}
h4{font-size:1.4375em}}
table{background:#fff;margin-bottom:1.25em;border:solid 1px #dedede}
table thead,table tfoot{background:#f7f8f7}
table thead tr th,table thead tr td,table tfoot tr th,table tfoot tr td{padding:.5em .625em .625em;font-size:inherit;color:rgba(0,0,0,.8);text-align:left}
table tr th,table tr td{padding:.5625em .625em;font-size:inherit;color:rgba(0,0,0,.8)}
table tr.even,table tr.alt{background:#f8f8f7}
table thead tr th,table tfoot tr th,table tbody tr td,table tr td,table tfoot tr td{display:table-cell;line-height:1.6}
h1,h2,h3,#toctitle,.sidebarblock>.content>.title,h4,h5,h6{line-height:1.2;word-spacing:-.05em}
h1 strong,h2 strong,h3 strong,#toctitle strong,.sidebarblock>.content>.title strong,h4 strong,h5 strong,h6 strong{font-weight:400}
.clearfix::before,.clearfix::after,.float-group::before,.float-group::after{content:" ";display:table}
.clearfix::after,.float-group::after{clear:both}
:not(pre):not([class^=L])>code{font-size:.9375em;font-style:normal!important;letter-spacing:0;padding:.1em .5ex;word-spacing:-.15em;background:#f7f7f8;-webkit-border-radius:4px;border-radius:4px;line-height:1.45;text-rendering:optimizeSpeed;word-wrap:break-word}
:not(pre)>code.nobreak{word-wrap:normal}
:not(pre)>code.nowrap{white-space:nowrap}
pre{color:rgba(0,0,0,.9);font-family:"Droid Sans Mono","DejaVu Sans Mono",monospace;line-height:1.45;text-rendering:optimizeSpeed}
pre code,pre pre{color:inherit;font-size:inherit;line-height:inherit}
pre>code{display:block}
pre.nowrap,pre.nowrap pre{white-space:pre;word-wrap:normal}
em em{font-style:normal}
strong strong{font-weight:400}
.keyseq{color:rgba(51,51,51,.8)}
kbd{font-family:"Droid Sans Mono","DejaVu Sans Mono",monospace;display:inline-block;color:rgba(0,0,0,.8);font-size:.65em;line-height:1.45;background:#f7f7f7;border:1px solid #ccc;-webkit-border-radius:3px;border-radius:3px;-webkit-box-shadow:0 1px 0 rgba(0,0,0,.2),0 0 0 .1em white inset;box-shadow:0 1px 0 rgba(0,0,0,.2),0 0 0 .1em #fff inset;margin:0 .15em;padding:.2em .5em;vertical-align:middle;position:relative;top:-.1em;white-space:nowrap}
.keyseq kbd:first-child{margin-left:0}
.keyseq kbd:last-child{margin-right:0}
.menuseq,.menuref{color:#000}
.menuseq b:not(.caret),.menuref{font-weight:inherit}
.menuseq{word-spacing:-.02em}
.menuseq b.caret{font-size:1.25em;line-height:.8}
.menuseq i.caret{font-weight:bold;text-align:center;width:.45em}
b.button::before,b.button::after{position:relative;top:-1px;font-weight:400}
b.button::before{content:"[";padding:0 3px 0 2px}
b.button::after{content:"]";padding:0 2px 0 3px}
p a>code:hover{color:rgba(0,0,0,.9)}
#header,#content,#footnotes,#footer{width:100%;margin-left:auto;margin-right:auto;margin-top:0;margin-bottom:0;max-width:62.5em;*zoom:1;position:relative;padding-left:.9375em;padding-right:.9375em}
#header::before,#header::after,#content::before,#content::after,#footnotes::before,#footnotes::after,#footer::before,#footer::after{content:" ";display:table}
#header::after,#content::after,#footnotes::after,#footer::after{clear:both}
#content{margin-top:1.25em}
#content::before{content:none}
#header>h1:first-child{color:rgba(0,0,0,.85);margin-top:2.25rem;margin-bottom:0}
#header>h1:first-child+#toc{margin-top:8px;border-top:1px solid #dddddf}
#header>h1:only-child,body.toc2 #header>h1:nth-last-child(2){border-bottom:1px solid #dddddf;padding-bottom:8px}
#header .details{border-bottom:1px solid #dddddf;line-height:1.45;padding-top:.25em;padding-bottom:.25em;padding-left:.25em;color:rgba(0,0,0,.6);display:-ms-flexbox;display:-webkit-flex;display:flex;-ms-flex-flow:row wrap;-webkit-flex-flow:row wrap;flex-flow:row wrap}
#header .details span:first-child{margin-left:-.125em}
#header .details span.email a{color:rgba(0,0,0,.85)}
#header .details br{display:none}
#header .details br+span::before{content:"\00a0\2013\00a0"}
#header .details br+span.author::before{content:"\00a0\22c5\00a0";color:rgba(0,0,0,.85)}
#header .details br+span#revremark::before{content:"\00a0|\00a0"}
#header #revnumber{text-transform:capitalize}
#header #revnumber::after{content:"\00a0"}
#content>h1:first-child:not([class]){color:rgba(0,0,0,.85);border-bottom:1px solid #dddddf;padding-bottom:8px;margin-top:0;padding-top:1rem;margin-bottom:1.25rem}
#toc{border-bottom:1px solid #e7e7e9;padding-bottom:.5em}
#toc>ul{margin-left:.125em}
#toc ul.sectlevel0>li>a{font-style:italic}
#toc ul.sectlevel0 ul.sectlevel1{margin:.5em 0}
#toc ul{font-family:"Open Sans","DejaVu Sans",sans-serif;list-style-type:none}
#toc li{line-height:1.3334;margin-top:.3334em}
#toc a{text-decoration:none}
#toc a:active{text-decoration:underline}
#toctitle{color:#7a2518;font-size:1.2em}
@media screen and (min-width:768px){#toctitle{font-size:1.375em}
body.toc2{padding-left:15em;padding-right:0}
#toc.toc2{margin-top:0!important;background:#f8f8f7;position:fixed;width:15em;left:0;top:0;border-right:1px solid #e7e7e9;border-top-width:0!important;border-bottom-width:0!important;z-index:1000;padding:1.25em 1em;height:100%;overflow:auto}
#toc.toc2 #toctitle{margin-top:0;margin-bottom:.8rem;font-size:1.2em}
#toc.toc2>ul{font-size:.9em;margin-bottom:0}
#toc.toc2 ul ul{margin-left:0;padding-left:1em}
#toc.toc2 ul.sectlevel0 ul.sectlevel1{padding-left:0;margin-top:.5em;margin-bottom:.5em}
body.toc2.toc-right{padding-left:0;padding-right:15em}
body.toc2.toc-right #toc.toc2{border-right-width:0;border-left:1px solid #e7e7e9;left:auto;right:0}}
@media screen and (min-width:1280px){body.toc2{padding-left:20em;padding-right:0}
#toc.toc2{width:20em}
#toc.toc2 #toctitle{font-size:1.375em}
#toc.toc2>ul{font-size:.95em}
#toc.toc2 ul ul{padding-left:1.25em}
body.toc2.toc-right{padding-left:0;padding-right:20em}}
#content #toc{border-style:solid;border-width:1px;border-color:#e0e0dc;margin-bottom:1.25em;padding:1.25em;background:#f8f8f7;-webkit-border-radius:4px;border-radius:4px}
#content #toc>:first-child{margin-top:0}
#content #toc>:last-child{margin-bottom:0}
#footer{max-width:100%;background:rgba(0,0,0,.8);padding:1.25em}
#footer-text{color:rgba(255,255,255,.8);line-height:1.44}
#content{margin-bottom:.625em}
.sect1{padding-bottom:.625em}
@media screen and (min-width:768px){#content{margin-bottom:1.25em}
.sect1{padding-bottom:1.25em}}
.sect1:last-child{padding-bottom:0}
.sect1+.sect1{border-top:1px solid #e7e7e9}
#content h1>a.anchor,h2>a.anchor,h3>a.anchor,#toctitle>a.anchor,.sidebarblock>.content>.title>a.anchor,h4>a.anchor,h5>a.anchor,h6>a.anchor{position:absolute;z-index:1001;width:1.5ex;margin-left:-1.5ex;display:block;text-decoration:none!important;visibility:hidden;text-align:center;font-weight:400}
#content h1>a.anchor::before,h2>a.anchor::before,h3>a.anchor::before,#toctitle>a.anchor::before,.sidebarblock>.content>.title>a.anchor::before,h4>a.anchor::before,h5>a.anchor::before,h6>a.anchor::before{content:"\00A7";font-size:.85em;display:block;padding-top:.1em}
#content h1:hover>a.anchor,#content h1>a.anchor:hover,h2:hover>a.anchor,h2>a.anchor:hover,h3:hover>a.anchor,#toctitle:hover>a.anchor,.sidebarblock>.content>.title:hover>a.anchor,h3>a.anchor:hover,#toctitle>a.anchor:hover,.sidebarblock>.content>.title>a.anchor:hover,h4:hover>a.anchor,h4>a.anchor:hover,h5:hover>a.anchor,h5>a.anchor:hover,h6:hover>a.anchor,h6>a.anchor:hover{visibility:visible}
#content h1>a.link,h2>a.link,h3>a.link,#toctitle>a.link,.sidebarblock>.content>.title>a.link,h4>a.link,h5>a.link,h6>a.link{color:#ba3925;text-decoration:none}
#content h1>a.link:hover,h2>a.link:hover,h3>a.link:hover,#toctitle>a.link:hover,.sidebarblock>.content>.title>a.link:hover,h4>a.link:hover,h5>a.link:hover,h6>a.link:hover{color:#a53221}
details,.audioblock,.imageblock,.literalblock,.listingblock,.stemblock,.videoblock{margin-bottom:1.25em}
details>summary:first-of-type{cursor:pointer;display:list-item;outline:none;margin-bottom:.75em}
.admonitionblock td.content>.title,.audioblock>.title,.exampleblock>.title,.imageblock>.title,.listingblock>.title,.literalblock>.title,.stemblock>.title,.openblock>.title,.paragraph>.title,.quoteblock>.title,table.tableblock>.title,.verseblock>.title,.videoblock>.title,.dlist>.title,.olist>.title,.ulist>.title,.qlist>.title,.hdlist>.title{text-rendering:optimizeLegibility;text-align:left;font-family:"Noto Serif","DejaVu Serif",serif;font-size:1rem;font-style:italic}
table.tableblock.fit-content>caption.title{white-space:nowrap;width:0}
.paragraph.lead>p,#preamble>.sectionbody>[class="paragraph"]:first-of-type p{font-size:1.21875em;line-height:1.6;color:rgba(0,0,0,.85)}
table.tableblock #preamble>.sectionbody>[class="paragraph"]:first-of-type p{font-size:inherit}
.admonitionblock>table{border-collapse:separate;border:0;background:none;width:100%}
.admonitionblock>table td.icon{text-align:center;width:80px}
.admonitionblock>table td.icon img{max-width:none}
.admonitionblock>table td.icon .title{font-weight:bold;font-family:"Open Sans","DejaVu Sans",sans-serif;text-transform:uppercase}
.admonitionblock>table td.content{padding-left:1.125em;padding-right:1.25em;border-left:1px solid #dddddf;color:rgba(0,0,0,.6)}
.admonitionblock>table td.content>:last-child>:last-child{margin-bottom:0}
.exampleblock>.content{border-style:solid;border-width:1px;border-color:#e6e6e6;margin-bottom:1.25em;padding:1.25em;background:#fff;-webkit-border-radius:4px;border-radius:4px}
.exampleblock>.content>:first-child{margin-top:0}
.exampleblock>.content>:last-child{margin-bottom:0}
.sidebarblock{border-style:solid;border-width:1px;border-color:#dbdbd6;margin-bottom:1.25em;padding:1.25em;background:#f3f3f2;-webkit-border-radius:4px;border-radius:4px}
.sidebarblock>:first-child{margin-top:0}
.sidebarblock>:last-child{margin-bottom:0}
.sidebarblock>.content>.title{color:#7a2518;margin-top:0;text-align:center}
.exampleblock>.content>:last-child>:last-child,.exampleblock>.content .olist>ol>li:last-child>:last-child,.exampleblock>.content .ulist>ul>li:last-child>:last-child,.exampleblock>.content .qlist>ol>li:last-child>:last-child,.sidebarblock>.content>:last-child>:last-child,.sidebarblock>.content .olist>ol>li:last-child>:last-child,.sidebarblock>.content .ulist>ul>li:last-child>:last-child,.sidebarblock>.content .qlist>ol>li:last-child>:last-child{margin-bottom:0}
.literalblock pre,.listingblock>.content>pre{-webkit-border-radius:4px;border-radius:4px;word-wrap:break-word;overflow-x:auto;padding:1em;font-size:.8125em}
@media screen and (min-width:768px){.literalblock pre,.listingblock>.content>pre{font-size:.90625em}}
@media screen and (min-width:1280px){.literalblock pre,.listingblock>.content>pre{font-size:1em}}
.literalblock pre,.listingblock>.content>pre:not(.highlight),.listingblock>.content>pre[class="highlight"],.listingblock>.content>pre[class^="highlight "]{background:#f7f7f8}
.literalblock.output pre{color:#f7f7f8;background:rgba(0,0,0,.9)}
.listingblock>.content{position:relative}
.listingblock code[data-lang]::before{display:none;content:attr(data-lang);position:absolute;font-size:.75em;top:.425rem;right:.5rem;line-height:1;text-transform:uppercase;color:inherit;opacity:.5}
.listingblock:hover code[data-lang]::before{display:block}
.listingblock.terminal pre .command::before{content:attr(data-prompt);padding-right:.5em;color:inherit;opacity:.5}
.listingblock.terminal pre .command:not([data-prompt])::before{content:"$"}
.listingblock pre.highlightjs{padding:0}
.listingblock pre.highlightjs>code{padding:1em;-webkit-border-radius:4px;border-radius:4px}
.listingblock pre.prettyprint{border-width:0}
.prettyprint{background:#f7f7f8}
pre.prettyprint .linenums{line-height:1.45;margin-left:2em}
pre.prettyprint li{background:none;list-style-type:inherit;padding-left:0}
pre.prettyprint li code[data-lang]::before{opacity:1}
pre.prettyprint li:not(:first-child) code[data-lang]::before{display:none}
table.linenotable{border-collapse:separate;border:0;margin-bottom:0;background:none}
table.linenotable td[class]{color:inherit;vertical-align:top;padding:0;line-height:inherit;white-space:normal}
table.linenotable td.code{padding-left:.75em}
table.linenotable td.linenos{border-right:1px solid currentColor;opacity:.35;padding-right:.5em}
pre.pygments .lineno{border-right:1px solid currentColor;opacity:.35;display:inline-block;margin-right:.75em}
pre.pygments .lineno::before{content:"";margin-right:-.125em}
.quoteblock{margin:0 1em 1.25em 1.5em;display:table}
.quoteblock:not(.excerpt)>.title{margin-left:-1.5em;margin-bottom:.75em}
.quoteblock blockquote,.quoteblock p{color:rgba(0,0,0,.85);font-size:1.15rem;line-height:1.75;word-spacing:.1em;letter-spacing:0;font-style:italic;text-align:justify}
.quoteblock blockquote{margin:0;padding:0;border:0}
.quoteblock blockquote::before{content:"\201c";float:left;font-size:2.75em;font-weight:bold;line-height:.6em;margin-left:-.6em;color:#7a2518;text-shadow:0 1px 2px rgba(0,0,0,.1)}
.quoteblock blockquote>.paragraph:last-child p{margin-bottom:0}
.quoteblock .attribution{margin-top:.75em;margin-right:.5ex;text-align:right}
.verseblock{margin:0 1em 1.25em}
.verseblock pre{font-family:"Open Sans","DejaVu Sans",sans;font-size:1.15rem;color:rgba(0,0,0,.85);font-weight:300;text-rendering:optimizeLegibility}
.verseblock pre strong{font-weight:400}
.verseblock .attribution{margin-top:1.25rem;margin-left:.5ex}
.quoteblock .attribution,.verseblock .attribution{font-size:.9375em;line-height:1.45;font-style:italic}
.quoteblock .attribution br,.verseblock .attribution br{display:none}
.quoteblock .attribution cite,.verseblock .attribution cite{display:block;letter-spacing:-.025em;color:rgba(0,0,0,.6)}
.quoteblock.abstract blockquote::before,.quoteblock.excerpt blockquote::before,.quoteblock .quoteblock blockquote::before{display:none}
.quoteblock.abstract blockquote,.quoteblock.abstract p,.quoteblock.excerpt blockquote,.quoteblock.excerpt p,.quoteblock .quoteblock blockquote,.quoteblock .quoteblock p{line-height:1.6;word-spacing:0}
.quoteblock.abstract{margin:0 1em 1.25em;display:block}
.quoteblock.abstract>.title{margin:0 0 .375em;font-size:1.15em;text-align:center}
.quoteblock.excerpt>blockquote,.quoteblock .quoteblock{padding:0 0 .25em 1em;border-left:.25em solid #dddddf}
.quoteblock.excerpt,.quoteblock .quoteblock{margin-left:0}
.quoteblock.excerpt blockquote,.quoteblock.excerpt p,.quoteblock .quoteblock blockquote,.quoteblock .quoteblock p{color:inherit;font-size:1.0625rem}
.quoteblock.excerpt .attribution,.quoteblock .quoteblock .attribution{color:inherit;text-align:left;margin-right:0}
table.tableblock{max-width:100%;border-collapse:separate}
p.tableblock:last-child{margin-bottom:0}
td.tableblock>.content>:last-child{margin-bottom:-1.25em}
td.tableblock>.content>:last-child.sidebarblock{margin-bottom:0}
table.tableblock,th.tableblock,td.tableblock{border:0 solid #dedede}
table.grid-all>thead>tr>.tableblock,table.grid-all>tbody>tr>.tableblock{border-width:0 1px 1px 0}
table.grid-all>tfoot>tr>.tableblock{border-width:1px 1px 0 0}
table.grid-cols>*>tr>.tableblock{border-width:0 1px 0 0}
table.grid-rows>thead>tr>.tableblock,table.grid-rows>tbody>tr>.tableblock{border-width:0 0 1px}
table.grid-rows>tfoot>tr>.tableblock{border-width:1px 0 0}
table.grid-all>*>tr>.tableblock:last-child,table.grid-cols>*>tr>.tableblock:last-child{border-right-width:0}
table.grid-all>tbody>tr:last-child>.tableblock,table.grid-all>thead:last-child>tr>.tableblock,table.grid-rows>tbody>tr:last-child>.tableblock,table.grid-rows>thead:last-child>tr>.tableblock{border-bottom-width:0}
table.frame-all{border-width:1px}
table.frame-sides{border-width:0 1px}
table.frame-topbot,table.frame-ends{border-width:1px 0}
table.stripes-all tr,table.stripes-odd tr:nth-of-type(odd),table.stripes-even tr:nth-of-type(even),table.stripes-hover tr:hover{background:#f8f8f7}
th.halign-left,td.halign-left{text-align:left}
th.halign-right,td.halign-right{text-align:right}
th.halign-center,td.halign-center{text-align:center}
th.valign-top,td.valign-top{vertical-align:top}
th.valign-bottom,td.valign-bottom{vertical-align:bottom}
th.valign-middle,td.valign-middle{vertical-align:middle}
table thead th,table tfoot th{font-weight:bold}
tbody tr th{display:table-cell;line-height:1.6;background:#f7f8f7}
tbody tr th,tbody tr th p,tfoot tr th,tfoot tr th p{color:rgba(0,0,0,.8);font-weight:bold}
p.tableblock>code:only-child{background:none;padding:0}
p.tableblock{font-size:1em}
ol{margin-left:1.75em}
ul li ol{margin-left:1.5em}
dl dd{margin-left:1.125em}
dl dd:last-child,dl dd:last-child>:last-child{margin-bottom:0}
ol>li p,ul>li p,ul dd,ol dd,.olist .olist,.ulist .ulist,.ulist .olist,.olist .ulist{margin-bottom:.625em}
ul.checklist,ul.none,ol.none,ul.no-bullet,ol.no-bullet,ol.unnumbered,ul.unstyled,ol.unstyled{list-style-type:none}
ul.no-bullet,ol.no-bullet,ol.unnumbered{margin-left:.625em}
ul.unstyled,ol.unstyled{margin-left:0}
ul.checklist{margin-left:.625em}
ul.checklist li>p:first-child>.fa-square-o:first-child,ul.checklist li>p:first-child>.fa-check-square-o:first-child{width:1.25em;font-size:.8em;position:relative;bottom:.125em}
ul.checklist li>p:first-child>input[type="checkbox"]:first-child{margin-right:.25em}
ul.inline{display:-ms-flexbox;display:-webkit-box;display:flex;-ms-flex-flow:row wrap;-webkit-flex-flow:row wrap;flex-flow:row wrap;list-style:none;margin:0 0 .625em -1.25em}
ul.inline>li{margin-left:1.25em}
.unstyled dl dt{font-weight:400;font-style:normal}
ol.arabic{list-style-type:decimal}
ol.decimal{list-style-type:decimal-leading-zero}
ol.loweralpha{list-style-type:lower-alpha}
ol.upperalpha{list-style-type:upper-alpha}
ol.lowerroman{list-style-type:lower-roman}
ol.upperroman{list-style-type:upper-roman}
ol.lowergreek{list-style-type:lower-greek}
.hdlist>table,.colist>table{border:0;background:none}
.hdlist>table>tbody>tr,.colist>table>tbody>tr{background:none}
td.hdlist1,td.hdlist2{vertical-align:top;padding:0 .625em}
td.hdlist1{font-weight:bold;padding-bottom:1.25em}
.literalblock+.colist,.listingblock+.colist{margin-top:-.5em}
.colist td:not([class]):first-child{padding:.4em .75em 0;line-height:1;vertical-align:top}
.colist td:not([class]):first-child img{max-width:none}
.colist td:not([class]):last-child{padding:.25em 0}
.thumb,.th{line-height:0;display:inline-block;border:solid 4px #fff;-webkit-box-shadow:0 0 0 1px #ddd;box-shadow:0 0 0 1px #ddd}
.imageblock.left{margin:.25em .625em 1.25em 0}
.imageblock.right{margin:.25em 0 1.25em .625em}
.imageblock>.title{margin-bottom:0}
.imageblock.thumb,.imageblock.th{border-width:6px}
.imageblock.thumb>.title,.imageblock.th>.title{padding:0 .125em}
.image.left,.image.right{margin-top:.25em;margin-bottom:.25em;display:inline-block;line-height:0}
.image.left{margin-right:.625em}
.image.right{margin-left:.625em}
a.image{text-decoration:none;display:inline-block}
a.image object{pointer-events:none}
sup.footnote,sup.footnoteref{font-size:.875em;position:static;vertical-align:super}
sup.footnote a,sup.footnoteref a{text-decoration:none}
sup.footnote a:active,sup.footnoteref a:active{text-decoration:underline}
#footnotes{padding-top:.75em;padding-bottom:.75em;margin-bottom:.625em}
#footnotes hr{width:20%;min-width:6.25em;margin:-.25em 0 .75em;border-width:1px 0 0}
#footnotes .footnote{padding:0 .375em 0 .225em;line-height:1.3334;font-size:.875em;margin-left:1.2em;margin-bottom:.2em}
#footnotes .footnote a:first-of-type{font-weight:bold;text-decoration:none;margin-left:-1.05em}
#footnotes .footnote:last-of-type{margin-bottom:0}
#content #footnotes{margin-top:-.625em;margin-bottom:0;padding:.75em 0}
.gist .file-data>table{border:0;background:#fff;width:100%;margin-bottom:0}
.gist .file-data>table td.line-data{width:99%}
div.unbreakable{page-break-inside:avoid}
.big{font-size:larger}
.small{font-size:smaller}
.underline{text-decoration:underline}
.overline{text-decoration:overline}
.line-through{text-decoration:line-through}
.aqua{color:#00bfbf}
.aqua-background{background:#00fafa}
.black{color:#000}
.black-background{background:#000}
.blue{color:#0000bf}
.blue-background{background:#0000fa}
.fuchsia{color:#bf00bf}
.fuchsia-background{background:#fa00fa}
.gray{color:#606060}
.gray-background{background:#7d7d7d}
.green{color:#006000}
.green-background{background:#007d00}
.lime{color:#00bf00}
.lime-background{background:#00fa00}
.maroon{color:#600000}
.maroon-background{background:#7d0000}
.navy{color:#000060}
.navy-background{background:#00007d}
.olive{color:#606000}
.olive-background{background:#7d7d00}
.purple{color:#600060}
.purple-background{background:#7d007d}
.red{color:#bf0000}
.red-background{background:#fa0000}
.silver{color:#909090}
.silver-background{background:#bcbcbc}
.teal{color:#006060}
.teal-background{background:#007d7d}
.white{color:#bfbfbf}
.white-background{background:#fafafa}
.yellow{color:#bfbf00}
.yellow-background{background:#fafa00}
span.icon>.fa{cursor:default}
a span.icon>.fa{cursor:inherit}
.admonitionblock td.icon [class^="fa icon-"]{font-size:2.5em;text-shadow:1px 1px 2px rgba(0,0,0,.5);cursor:default}
.admonitionblock td.icon .icon-note::before{content:"\f05a";color:#19407c}
.admonitionblock td.icon .icon-tip::before{content:"\f0eb";text-shadow:1px 1px 2px rgba(155,155,0,.8);color:#111}
.admonitionblock td.icon .icon-warning::before{content:"\f071";color:#bf6900}
.admonitionblock td.icon .icon-caution::before{content:"\f06d";color:#bf3400}
.admonitionblock td.icon .icon-important::before{content:"\f06a";color:#bf0000}
.conum[data-value]{display:inline-block;color:#fff!important;background:rgba(0,0,0,.8);-webkit-border-radius:100px;border-radius:100px;text-align:center;font-size:.75em;width:1.67em;height:1.67em;line-height:1.67em;font-family:"Open Sans","DejaVu Sans",sans-serif;font-style:normal;font-weight:bold}
.conum[data-value] *{color:#fff!important}
.conum[data-value]+b{display:none}
.conum[data-value]::after{content:attr(data-value)}
pre .conum[data-value]{position:relative;top:-.125em}
b.conum *{color:inherit!important}
.conum:not([data-value]):empty{display:none}
dt,th.tableblock,td.content,div.footnote{text-rendering:optimizeLegibility}
h1,h2,p,td.content,span.alt{letter-spacing:-.01em}
p strong,td.content strong,div.footnote strong{letter-spacing:-.005em}
p,blockquote,dt,td.content,span.alt{font-size:1.0625rem}
p{margin-bottom:1.25rem}
.sidebarblock p,.sidebarblock dt,.sidebarblock td.content,p.tableblock{font-size:1em}
.exampleblock>.content{background:#fffef7;border-color:#e0e0dc;-webkit-box-shadow:0 1px 4px #e0e0dc;box-shadow:0 1px 4px #e0e0dc}
.print-only{display:none!important}
@page{margin:1.25cm .75cm}
@media print{*{-webkit-box-shadow:none!important;box-shadow:none!important;text-shadow:none!important}
html{font-size:80%}
a{color:inherit!important;text-decoration:underline!important}
a.bare,a[href^="#"],a[href^="mailto:"]{text-decoration:none!important}
a[href^="http:"]:not(.bare)::after,a[href^="https:"]:not(.bare)::after{content:"(" attr(href) ")";display:inline-block;font-size:.875em;padding-left:.25em}
abbr[title]::after{content:" (" attr(title) ")"}
pre,blockquote,tr,img,object,svg{page-break-inside:avoid}
thead{display:table-header-group}
svg{max-width:100%}
p,blockquote,dt,td.content{font-size:1em;orphans:3;widows:3}
h2,h3,#toctitle,.sidebarblock>.content>.title{page-break-after:avoid}
#toc,.sidebarblock,.exampleblock>.content{background:none!important}
#toc{border-bottom:1px solid #dddddf!important;padding-bottom:0!important}
body.book #header{text-align:center}
body.book #header>h1:first-child{border:0!important;margin:2.5em 0 1em}
body.book #header .details{border:0!important;display:block;padding:0!important}
body.book #header .details span:first-child{margin-left:0!important}
body.book #header .details br{display:block}
body.book #header .details br+span::before{content:none!important}
body.book #toc{border:0!important;text-align:left!important;padding:0!important;margin:0!important}
body.book #toc,body.book #preamble,body.book h1.sect0,body.book .sect1>h2{page-break-before:always}
.listingblock code[data-lang]::before{display:block}
#footer{padding:0 .9375em}
.hide-on-print{display:none!important}
.print-only{display:block!important}
.hide-for-print{display:none!important}
.show-for-print{display:inherit!important}}
@media print,amzn-kf8{#header>h1:first-child{margin-top:1.25rem}
.sect1{padding:0!important}
.sect1+.sect1{border:0}
#footer{background:none}
#footer-text{color:rgba(0,0,0,.6);font-size:.9em}}
@media amzn-kf8{#header,#content,#footnotes,#footer{padding:0}}
< / style >
< link rel = "stylesheet" href = "https://cdnjs.cloudflare.com/ajax/libs/font-awesome/4.7.0/css/font-awesome.min.css" >
< / head >
< body class = "article toc2 toc-right" >
< div id = "header" >
< h1 > SSH Tunneling!< / h1 >
< div class = "details" >
< span id = "author" class = "author" > Apostolos rootApostolos@swarmlab.io< / span > < br >
< / div >
< div id = "toc" class = "toc2" >
< div id = "toctitle" > Πίνακας περιεχομένων< / div >
< ul class = "sectlevel1" >
< li > < a href = "#cheat-Docker" > 1. Install docker (Home PC)< / a > < / li >
< li > < a href = "#_ssh_tunneling" > 2. SSH Tunneling< / a > < / li >
< li > < a href = "#_local_port_forwarding" > 3. Local Port Forwarding< / a > < / li >
< li > < a href = "#_remote_port_forwarding" > 4. Remote Port Forwarding< / a > < / li >
< li > < a href = "#_ssh_command" > 5. SSH Command< / a >
< ul class = "sectlevel2" >
< li > < a href = "#_connect_to_server" > 5.1. Connect to server< / a > < / li >
< li > < a href = "#_executing_remote_commands_on_the_server" > 5.2. Executing remote commands on the server< / a > < / li >
< / ul >
< / li >
< li > < a href = "#_sshd_config_ssh_server_configuration" > 6. sshd_config - SSH Server Configuration< / a >
< ul class = "sectlevel2" >
< li > < a href = "#_cryptographic_policy" > 6.1. Cryptographic policy< / a > < / li >
< li > < a href = "#_verbose_logging" > 6.2. Verbose logging< / a > < / li >
< li > < a href = "#_root_login" > 6.3. Root login< / a > < / li >
< li > < a href = "#_port_forwarding" > 6.4. Port forwarding< / a > < / li >
< li > < a href = "#_generate_a_key_pair" > 6.5. Generate a key pair< / a > < / li >
< li > < a href = "#_install_your_public_key" > 6.6. Install your public key< / a > < / li >
< / ul >
< / li >
< li > < a href = "#_run_graphics_applications_remotely" > 7. run graphics applications remotely< / a > < / li >
< li > < a href = "#_copy_files_and_directories_between_two_systems" > 8. Copy Files and Directories Between Two Systems< / a >
< ul class = "sectlevel2" >
< li > < a href = "#_copy_a_file_from_a_local_to_a_remote_system" > 8.1. Copy a file from a local to a remote system< / a > < / li >
< li > < a href = "#_copy_a_remote_file_to_a_local_system_using_the_scp_ommand" > 8.2. Copy a Remote File to a Local System using the scp ommand< / a > < / li >
< / ul >
< / li >
< / ul >
< / div >
< / div >
< div id = "content" >
< div id = "preamble" >
< div class = "sectionbody" >
< div class = "paragraph" >
< p > < br > < / p >
< / div >
< / div >
< / div >
< div class = "sect1" >
< h2 id = "cheat-Docker" > 1. Install docker (Home PC)< / h2 >
< div class = "sectionbody" >
< div class = "paragraph" >
< p > HowTo: See < a href = "http://docs.swarmlab.io/SwarmLab-HowTos/labs/Howtos/docker/install.adoc.html" target = "_blank" rel = "noopener" > How to< / a > < / p >
< / div >
< div class = "admonitionblock note" >
< table >
< tr >
< td class = "icon" >
< i class = "fa icon-note" title = "Note" > < / i >
< / td >
< td class = "content" >
< div class = "title" > NOTE< / div >
< div class = "paragraph" >
< p > Assuming you’ re already logged in< / p >
< / div >
< / td >
< / tr >
< / table >
< / div >
< / div >
< / div >
< div class = "sect1" >
< h2 id = "_ssh_tunneling" > 2. SSH Tunneling< / h2 >
< div class = "sectionbody" >
< div class = "paragraph" >
< p > < strong > < strong > SSH Tunneling< / strong > < / strong > , is the ability to use ssh to create a bi-directional encrypted network connection between machines over which data can be exchanged, typically TCP/IP.< / p >
< / div >
< div class = "imageblock" >
< div class = "content" >
< img src = "data:image/png;base64,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
< / div >
< / div >
< div class = "admonitionblock note" >
< table >
< tr >
< td class = "icon" >
< i class = "fa icon-note" title = "Note" > < / i >
< / td >
< td class = "content" >
< div class = "title" > NOTE< / div >
< div class = "paragraph" >
< p > SSH is a standard for secure remote logins and file transfers over untrusted networks. It also provides a way to secure the data traffic of any given application using port forwarding, basically tunneling any TCP/IP port over SSH. This means that the application data traffic is directed to flow inside an encrypted SSH connection so that it cannot be eavesdropped or intercepted while it is in transit. SSH tunneling enables adding network security to legacy applications that do not natively support encryption.< / p >
< / div >
< / td >
< / tr >
< / table >
< / div >
< / div >
< / div >
< div class = "sect1" >
< h2 id = "_local_port_forwarding" > 3. Local Port Forwarding< / h2 >
< div class = "sectionbody" >
< div class = "listingblock" >
< div class = "title" > local port forwarding< / div >
< div class = "content" >
< pre class = "highlight" > < code class = "language-bash" data-lang = "bash" > ssh -nNT -L 8000:localhost:3306 user@192.168.89.5< / code > < / pre >
< / div >
< / div >
< div class = "paragraph" >
< p > The above command sets up an ssh tunnel between your machine and the server, and forwards all traffic from localhost:3306 to localhost:8000 (on your machine).< / p >
< / div >
< div class = "paragraph" >
< p > So now you could connect to MySQL running on your server via localhost on port 8000 on your machine.< / p >
< / div >
< / div >
< / div >
< div class = "sect1" >
< h2 id = "_remote_port_forwarding" > 4. Remote Port Forwarding< / h2 >
< div class = "sectionbody" >
< div class = "listingblock" >
< div class = "title" > remote port forwarding< / div >
< div class = "content" >
< pre class = "highlight" > < code class = "language-bash" data-lang = "bash" > ssh -nNT -R 4000:localhost:3000 user@192.168.89.5< / code > < / pre >
< / div >
< / div >
< div class = "paragraph" >
< p > The above command sets up an ssh tunnel between your machine and the server, and forwards all traffic from localhost:3000 (on your machine) to localhost:4000 (in the context of the server).< / p >
< / div >
< div class = "paragraph" >
< p > So now you can connect to the locally running service on port 3000 on the server on port 4000< / p >
< / div >
< / div >
< / div >
< div class = "sect1" >
< h2 id = "_ssh_command" > 5. SSH Command< / h2 >
< div class = "sectionbody" >
< div class = "paragraph" >
< p > Practically every Linux system includes the ssh command. This command is used to start the SSH client program that enables secure connection to the SSH server on a remote machine. The ssh command is used from logging into the remote machine, transferring files between the two machines, and for executing commands on the remote machine.< / p >
< / div >
< div class = "sect2" >
< h3 id = "_connect_to_server" > 5.1. Connect to server< / h3 >
< div class = "listingblock" >
< div class = "title" > connect< / div >
< div class = "content" >
< pre class = "highlight" > < code class = "language-bash" data-lang = "bash" > ssh user@192.168.89.5
The authenticity of host '192.168.89.5' cannot be established.
DSA key fingerprint is 04:48:30:31:b0:f3:5a:9b:01:9d:b3:a7:38:e2:b1:0c.
Are you sure you want to continue connecting (yes/no)?< / code > < / pre >
< / div >
< / div >
< div class = "paragraph" >
< p > Type yes to continue. This will add the server to your list of known hosts (~/.ssh/known_hosts) as seen in the following message:< / p >
< / div >
< div class = "listingblock" >
< div class = "content" >
< pre class = "highlight" > < code class = "language-bash" data-lang = "bash" > Warning: Permanently added '192.168.89.5' (DSA) to the list of known hosts.< / code > < / pre >
< / div >
< / div >
< div class = "paragraph" >
< p > Each server has a host key, and the above question related to verifying and saving the host key, so that next time you connect to the server, it can verify that it actually is the same server.< / p >
< / div >
< / div >
< div class = "sect2" >
< h3 id = "_executing_remote_commands_on_the_server" > 5.2. Executing remote commands on the server< / h3 >
< div class = "listingblock" >
< div class = "content" >
< pre class = "highlight" > < code class = "language-bash" data-lang = "bash" > ssh user@192.168.89.5 /bin/bash -c "ls -al"< / code > < / pre >
< / div >
< / div >
< / div >
< / div >
< / div >
< div class = "sect1" >
< h2 id = "_sshd_config_ssh_server_configuration" > 6. sshd_config - SSH Server Configuration< / h2 >
< div class = "sectionbody" >
< div class = "paragraph" >
< p > The OpenSSH server reads a configuration file when it is started. Usually this file is /etc/ssh/sshd_config, but the location can be changed using the -f command line option when starting sshd.< / p >
< / div >
< div class = "sect2" >
< h3 id = "_cryptographic_policy" > 6.1. Cryptographic policy< / h3 >
< div class = "ulist" >
< ul >
< li >
< p > Symmetric algorithms for encrypting the bulk of transferred data are configured using the Ciphers option. A good value is aes128-ctr,aes192-ctr,aes256-ctr.< / p >
< / li >
< li >
< p > Host key algorithms are selected by the HostKeyAlgorithms option. A good value is ecdsa-sha2-nistp256,ecdsa-sha2-nistp384,ecdsa-sha2-nistp521,ssh-rsa,ssh-dss.< / p >
< / li >
< li >
< p > Key exchange algorithms are selected by the KexAlgorithms option. recommend ecdh-sha2-nistp256,ecdh-sha2-nistp384,ecdh-sha2-nistp521,diffie-hellman-group14-sha1,diffie-hellman-group-exchange-sha256.< / p >
< / li >
< / ul >
< / div >
< div class = "admonitionblock note" >
< table >
< tr >
< td class = "icon" >
< i class = "fa icon-note" title = "Note" > < / i >
< / td >
< td class = "content" >
< div class = "paragraph" >
< p > not recommend allowing diffie-hellman-group1-sha1, unless needed for compatibility. It uses a 768 bit prime number, which is too small by today’ s standards and may be breakable by intelligence agencies in real time. Using it could expose connections to man-in-the-middle attacks when faced with such adversaries.< / p >
< / div >
< / td >
< / tr >
< / table >
< / div >
< / div >
< div class = "sect2" >
< h3 id = "_verbose_logging" > 6.2. Verbose logging< / h3 >
< div class = "paragraph" >
< p > It is strongly recommended that LogLevel be set to VERBOSE. This way, the key fingerprint for any SSH key used for login is logged. This information is important for SSH key management, especially in legacy environments.< / p >
< / div >
< div class = "listingblock" >
< div class = "content" >
< pre class = "highlight" > < code class = "language-bash" data-lang = "bash" > LogLevel VERBOSE< / code > < / pre >
< / div >
< / div >
< / div >
< div class = "sect2" >
< h3 id = "_root_login" > 6.3. Root login< / h3 >
< div class = "paragraph" >
< p > root access should generally go through a privileged access management system< / p >
< / div >
< div class = "paragraph" >
< p > To disable passwords for root, but still allow key-based access without forced command, use:< / p >
< / div >
< div class = "listingblock" >
< div class = "content" >
< pre class = "highlight" > < code class = "language-bash" data-lang = "bash" > PermitRootLogin prohibit-password< / code > < / pre >
< / div >
< / div >
< div class = "paragraph" >
< p > To disable passwords and only allow key-based access with a forced command, use:< / p >
< / div >
< div class = "listingblock" >
< div class = "content" >
< pre class = "highlight" > < code class = "language-bash" data-lang = "bash" > PermitRootLogin forced-commands-only< / code > < / pre >
< / div >
< / div >
< / div >
< div class = "sect2" >
< h3 id = "_port_forwarding" > 6.4. Port forwarding< / h3 >
< div class = "paragraph" >
< p > Generally prevent port forwarding on servers, unless expressly needed for tunneling legacy applications.
There is substantial risk that users will use SSH tunneling to open backdoors into the organization through the firewall to get access to work machines from home.< / p >
< / div >
< / div >
< div class = "sect2" >
< h3 id = "_generate_a_key_pair" > 6.5. Generate a key pair< / h3 >
< div class = "listingblock" >
< div class = "content" >
< pre class = "highlight" > < code class = "language-bash" data-lang = "bash" > ssh-keygen< / code > < / pre >
< / div >
< / div >
< div class = "paragraph" >
< p > Output:< / p >
< / div >
< div class = "listingblock" >
< div class = "content" >
< pre class = "highlight" > < code class = "language-bash" data-lang = "bash" > Generating public/private rsa key pair.
Enter file in which to save the key (/home/user/.ssh/id_rsa):
Created directory '/home/user/.ssh'.
Enter passphrase (empty for no passphrase):
Enter same passphrase again:
Your identification has been saved in /home/user/.ssh/id_rsa.
Your public key has been saved in /home/user/.ssh/id_rsa.pub.
The key fingerprint is:
8c:2a:ed:82:98:6d:12:0a:3a:ba:b2:1c:c0:25:be:5b< / code > < / pre >
< / div >
< / div >
< / div >
< div class = "sect2" >
< h3 id = "_install_your_public_key" > 6.6. Install your public key< / h3 >
< div class = "listingblock" >
< div class = "content" >
< pre class = "highlight" > < code class = "language-bash" data-lang = "bash" > sh-copy-id -i ~/.ssh/id_rsa.pub UserName@RemoteServer< / code > < / pre >
< / div >
< / div >
< div class = "paragraph" >
< p > Output:< / p >
< / div >
< div class = "listingblock" >
< div class = "content" >
< pre class = "highlight" > < code class = "language-bash" data-lang = "bash" > UserName@RemoteServer's password: ********< / code > < / pre >
< / div >
< / div >
< div class = "paragraph" >
< p > Now try logging into the machine, with "ssh 'username@remoteserver'", and check in:< / p >
< / div >
< div class = "listingblock" >
< div class = "content" >
< pre class = "highlight" > < code class = "language-bash" data-lang = "bash" > ~/.ssh/authorized_keys< / code > < / pre >
< / div >
< / div >
< / div >
< / div >
< / div >
< div class = "sect1" >
< h2 id = "_run_graphics_applications_remotely" > 7. run graphics applications remotely< / h2 >
< div class = "sectionbody" >
< div class = "paragraph" >
< p > X11 forwarding needs to be enabled on both the client side and the server side.< / p >
< / div >
< div class = "ulist" >
< ul >
< li >
< p > On the client side, the -X (capital X) option to ssh enables X11 forwarding< / p >
< / li >
< li >
< p > On the server side, X11Forwarding yes must specified in /etc/ssh/sshd_config.< / p >
< / li >
< li >
< p > The xauth program must be installed on the server side.< / p >
< / li >
< / ul >
< / div >
< div class = "listingblock" >
< div class = "content" >
< pre class = "highlight" > < code class = "language-bash" data-lang = "bash" > ssh -X user@192.168.89.5 gimp< / code > < / pre >
< / div >
< / div >
< / div >
< / div >
< div class = "sect1" >
< h2 id = "_copy_files_and_directories_between_two_systems" > 8. Copy Files and Directories Between Two Systems< / h2 >
< div class = "sectionbody" >
< div class = "sect2" >
< h3 id = "_copy_a_file_from_a_local_to_a_remote_system" > 8.1. Copy a file from a local to a remote system< / h3 >
< div class = "paragraph" >
< p > To copy a file from a local to a remote system run the following command:< / p >
< / div >
< div class = "listingblock" >
< div class = "content" >
< pre class = "highlight" > < code class = "language-bash" data-lang = "bash" > scp file.txt user@192.168.89.5:/remote/directory< / code > < / pre >
< / div >
< / div >
< / div >
< div class = "sect2" >
< h3 id = "_copy_a_remote_file_to_a_local_system_using_the_scp_ommand" > 8.2. Copy a Remote File to a Local System using the scp ommand< / h3 >
< div class = "paragraph" >
< p > To copy a file named file.txt from a remote server with IP 192.168.89.5 run the following command:< / p >
< / div >
< div class = "listingblock" >
< div class = "content" >
< pre class = "highlight" > < code class = "language-bash" data-lang = "bash" > scp user@192.168.89.5:/remote/file.txt /local/directory< / code > < / pre >
< / div >
< / div >
< div class = "paragraph" >
< p > < br >
< br >
< / p >
< / div >
< hr >
< div class = "admonitionblock note" >
< table >
< tr >
< td class = "icon" >
< i class = "fa icon-note" title = "Note" > < / i >
< / td >
< td class = "content" >
< div class = "title" > Reminder< / div >
< div class = "paragraph" >
< p > Caminante, no hay camino,< br >
se hace camino al andar.< / p >
< / div >
< div class = "paragraph" >
< p > Wanderer, there is no path,< br >
the path is made by walking.< / p >
< / div >
< div class = "paragraph" >
< p > < strong > Antonio Machado< / strong > Campos de Castilla< / p >
< / div >
< / td >
< / tr >
< / table >
< / div >
< / div >
< / div >
< / div >
< / div >
< div id = "footer" >
< div id = "footer-text" >
Last updated 2020-10-21 10:04:26 UTC
< / div >
< / div >
< / body >
< / html >
