1-888-310-4540 (main) / 1-888-707-6150 (support) info@spkaa.com
Select Page

Using SSH to Securely Tunnel a TCP Application

Published by Mike Solinap
on June 28, 2012

Often times, I’m caught in a situation where an application or service is not directly accessible to me from the network I’m currently on.  For instance, if I’m at a customer site, I may need VNC or RDP access to a collocated server.  Sure, I could open up port 5901 to the Internet on my firewall, but that would be ill advised, as VNC sends passwords in clear text.  Even still, the site I’m at may have port 5901 outbound blocked.

Similarly, there have been situations where customers have two or more separate networks, joined only by certain multi-homed machines, or privileged machines in terms of router access lists.  How do you then go about accessing a web app, for instance, via those machines?

Take another situation — you’re at the airport looking for public WiFi.  You join a wireless network which you believe is legitimate.  Can you be certain?  When privacy is of concern, I immediately open up an SSH tunnel to my personal Linux machine where a squid proxy is running, and I tunnel all web traffic through that.

Not only does SSH provide encryption, but it can also provide compression.  So applications such as VNC and HTTP further benefit from this, especially when you’re on a WAN link with limited bandwidth.

The list of potential situations where an SSH tunnel would be useful is endless, continue reading to become an SSH tunnel guru in no time.  If you have any unique uses for SSH tunneling, I’d like to hear them!

Michael Solinap
Sr. Systems Integrator
SPK & Associates

Latest White Papers

Atlassian Cloud: Understanding Zero Trust Security

Atlassian Cloud: Understanding Zero Trust Security

Where To Start & Why It Matters What is the Atlassian Cloud Zero Trust Security model? Well, for decades, enterprise security controls were built to protect a large, single perimeter around a corporation. Often described as castle-and-moat security, This approach...

Related Resources

Use Nessus To Harden Your Cybersecurity

Use Nessus To Harden Your Cybersecurity

Cybersecurity should be baked into the onset of IT and product development processes. Additionally, treating cybersecurity as an afterthought opens your organization up to vulnerabilities and risk. Therefore hardening your IT product cybersecurity with a tool like...

Why Process Automation Is Critical For Engineering

Why Process Automation Is Critical For Engineering

Process automation releases your engineers for the work their brains are intended for. That work is creativity and problem-solving.  By implementing process automation, you improve the team’s morale. Firstly, they get more focus time for deep work and designing better...

Deep Work Improves Engineers’ Productivity

Deep Work Improves Engineers’ Productivity

In this blog we'll explore how the principle of Deep Work by Cal Newport can improve your engineers productivity. Does it feel harder for you to focus on your creative, technical work? When I speak to engineers or management staff and ask this question, the answer...