Presentation is loading. Please wait.

Presentation is loading. Please wait.

Network Security SSH Tunneling David Funk Matt McLaughlin Systems Administrators Computer Systems Support COE, University of Iowa.

Published byRalph Phelps Modified over 9 years ago

Similar presentations

Presentation on theme: "Network Security SSH Tunneling David Funk Matt McLaughlin Systems Administrators Computer Systems Support COE, University of Iowa."— Presentation transcript:

1 Network Security SSH Tunneling David Funk Matt McLaughlin Systems Administrators Computer Systems Support COE, University of Iowa

2 Using SSH Tunneling  SMB Mount  Remote Desktop

3 Direct Connect Share client SMB file server Port 139

4 Tunnel SMB file server Share client SSH client SSH server Port 22 encrypted Port 139 sshd Port 139

5 Download Tools Setup lmhosts  rpccfg.exe http://download.microsoft.com Search for rpccfg  C:\windows\system32\drivers\etc\lmhosts 127.0.0.1 smb00

6 Set TCP Port 135  Listen only on interfaces specified by Bind value  HKLM\System\CurrentControlSet\Services\ RpcSs Add ListenOnInternet REG_SZ N  Reboot

7 Configure RPC  Configure host not to listen on 0.0.0.0:135 rpccfg –l  Select interface number of non-loopback interface rpccfg -a 65539 Reboot

8 Setup SecureCRT (or Favorite SSH Program)  SecureCRT Tunnel Ports  Z:"Port Forward Table V2"=00000002  port135|127.0.0.1,135|1|128.255.17.40|135||  port139|127.0.0.1,139|1|128.255.17.40|139|| Setup “Port Forward Filter”  =allow,127.0.0.0/255.0.0.0,0 allow,128.255.20.23/255.255.255.255 deny,0.0.0.0/0.0.0.0,0

9 Remote Desktop Tunnel Basic Setup  Make sure remote assistance and remote desktop are turned off under Start | Control Panel | System | Remote  Setup SSH with local port 3389 forwarded to remote port 3389 on target Windows computer

10 Setup Modified mstsc.exe  Allow connections to 127.0.0.1  Copy c:\windows\systems32\mstsc.exe and mstscax.dll to another folder  Set mstsc.exe in new location to run in Windows 98 compatible mode.

11 Connect via Remote Desktop  Connect SSH session  Start modified mstsc.exe  Connect to 127.0.0.1  Login as usual

Download ppt "Network Security SSH Tunneling David Funk Matt McLaughlin Systems Administrators Computer Systems Support COE, University of Iowa."

Similar presentations

DSL-2730B, DSL-2740B, DSL-2750B.

DSL-2730B, DSL-2740B, DSL-2750B.
Securing Remote PC Access to UNIX/Linux Hosts with VPN or SSH Charles T. Moetului WRQ, Inc. (206) 217-7048

Securing Remote PC Access to UNIX/Linux Hosts with VPN or SSH Charles T. Moetului WRQ, Inc. (206)
Choose a category: Install Episys Install Accessories Synergent Confidential Episys Version 2008.08Synergent 2008Download latest guides from:

Choose a category: Install Episys Install Accessories Synergent Confidential Episys Version Synergent 2008Download latest guides from:
11 ADMINISTERING MICROSOFT WINDOWS SERVER 2003 Chapter 2.

11 ADMINISTERING MICROSOFT WINDOWS SERVER 2003 Chapter 2.
70-270, 70-290 MCSE/MCSA Guide to Installing and Managing Microsoft Windows XP Professional and Windows Server 2003 Chapter Twelve Implementing Terminal.

70-270, MCSE/MCSA Guide to Installing and Managing Microsoft Windows XP Professional and Windows Server 2003 Chapter Twelve Implementing Terminal.
Remote Desktop Security Raghav Chawla, Jon Ussery Group 20.

Remote Desktop Security Raghav Chawla, Jon Ussery Group 20.
File sharing. Connect the two win 7 systems with LAN card Open the network.

File sharing. Connect the two win 7 systems with LAN card Open the network.
TCP/IP Tools Lesson 5. Objectives Skills/ConceptsObjective Domain Description Objective Domain Number Using basic TCP/IP commands Understanding TCP/IP3.6.

TCP/IP Tools Lesson 5. Objectives Skills/ConceptsObjective Domain Description Objective Domain Number Using basic TCP/IP commands Understanding TCP/IP3.6.
11 SYSTEMS ADMINISTRATION AND TERMINAL SERVICES Chapter 12.

11 SYSTEMS ADMINISTRATION AND TERMINAL SERVICES Chapter 12.
Remote Accessing Your Home Computer Using VNC and a Dynamic DNS Name.

Remote Accessing Your Home Computer Using VNC and a Dynamic DNS Name.
Remote access and file transfer Getting files on and off Bio-Linux.

Remote access and file transfer Getting files on and off Bio-Linux.
Ssh: secure shell. overview Purpose Protocol specifics Configuration Security considerations Other uses.

Ssh: secure shell. overview Purpose Protocol specifics Configuration Security considerations Other uses.
4-1 PSe_4Konf.503 EAGLE Getting Started and Configuration.

4-1 PSe_4Konf.503 EAGLE Getting Started and Configuration.
GDC Workshop Session 1 - Storage 2003/11. Agenda NAS Quick installation (15 min) Major functions demo (30 min) System recovery (10 min) Disassembly (20.

GDC Workshop Session 1 - Storage 2003/11. Agenda NAS Quick installation (15 min) Major functions demo (30 min) System recovery (10 min) Disassembly (20.
Week #10 Objectives: Remote Access and Mobile Computing Configure Mobile Computer and Device Settings Configure Remote Desktop and Remote Assistance for.

Week #10 Objectives: Remote Access and Mobile Computing Configure Mobile Computer and Device Settings Configure Remote Desktop and Remote Assistance for.
Configuring the MagicInfo Pro Display

Configuring the MagicInfo Pro Display
Computer Setup for EDA Tools Murali Dharan January 8, 2014 ELEC 7770 Spring 2014 Advanced VLSI Design 1/08/2014 1.

Computer Setup for EDA Tools Murali Dharan January 8, 2014 ELEC 7770 Spring 2014 Advanced VLSI Design 1/08/
Chapter 14: Remote Server Administration BAI617. Chapter Topics Configure Windows Server 2008 R2 servers for remote administration Remotely connect to.

Chapter 14: Remote Server Administration BAI617. Chapter Topics Configure Windows Server 2008 R2 servers for remote administration Remotely connect to.
Remote Desktop Services Remote Desktop Connection Remote Desktop Protocol Remote Assistance Remote Server Administration T0ols.

Remote Desktop Services Remote Desktop Connection Remote Desktop Protocol Remote Assistance Remote Server Administration T0ols.
Session 10 Windows Platform Eng. Dina Alkhoudari.

Session 10 Windows Platform Eng. Dina Alkhoudari.

Similar presentations

Ads by Google