[Bug 2473] New: sshd and -R port forwardings on 127.0.0.0/8

bugzilla-daemon at bugzilla.mindrot.org bugzilla-daemon at bugzilla.mindrot.org
Sun Sep 27 06:07:12 AEST 2015


https://bugzilla.mindrot.org/show_bug.cgi?id=2473

            Bug ID: 2473
           Summary: sshd and -R port forwardings on 127.0.0.0/8
           Product: Portable OpenSSH
           Version: 6.6p1
          Hardware: Other
                OS: Linux
            Status: NEW
          Severity: enhancement
          Priority: P5
         Component: sshd
          Assignee: unassigned-bugs at mindrot.org
          Reporter: florianhilgenberg at googlemail.com

Hello,

we are trying to connect several devices to one master node in the mid.
For this szenario we need some remote forwardings by ssh where each
satellite node should establish a socket on another 127.0.0.0/8 address
but each time the same port.
Now it looks like we are going to be forced to 127.0.0.1 as long as we
have GatewayPorts set to "no" by default.

More explainations:
client A is going to open a channel by:
autossh -i privkey -R 127.0.0.2:2222:127.0.0.1:22 user at host
client B is going to open a channel by:
autossh -i privkey -R 127.0.0.3:2222:127.0.0.1:22 user at host
client C is going to open a channel by:
autossh -i privkey -R 127.0.0.4:2222:127.0.0.1:22 user at host

But none of this clients is going to work this way as sshd is going to
force each socket to 127.0.0.1.

This works well if I set GatewayPorts to clientspecified.

The documentation states: 
GatewayPorts can be used to specify that sshd should allow remote port
forwardings to bind to non-loopback addresses, thus allowing other
hosts to connect.  

tl;dr;
Is it supposed by you to have sshd going to refuse a listening socket
on other lo addresses than 127.0.0.1?

Best regards,
Florian

-- 
You are receiving this mail because:
You are watching the assignee of the bug.


More information about the openssh-bugs mailing list