SSH Tunneling HTTPS traffic through 2 Servers
Clash Royale CLAN TAG#URR8PPP
What I'm trying to determine is how do you tunnel HTTPS traffic through more than 1 host? Normally what I do when I have to jump through 1 host is the following:
# URL Access Tunnel: https://127.0.0.1:1234
ssh -L 1234:TARGET_SERVER:443 jumphost.foo.com
Then I can connect my browser to https://127.0.0.1:1234
and I'm good to go. But now I have a 2nd jumphost I need to tunnel through, but I can't seem to make a similar SSH command work.
Diagram:
Laptop -> Jumphost1 -> Jumphost2 -> Remote_HTTP_Server
ssh tunneling
add a comment |
What I'm trying to determine is how do you tunnel HTTPS traffic through more than 1 host? Normally what I do when I have to jump through 1 host is the following:
# URL Access Tunnel: https://127.0.0.1:1234
ssh -L 1234:TARGET_SERVER:443 jumphost.foo.com
Then I can connect my browser to https://127.0.0.1:1234
and I'm good to go. But now I have a 2nd jumphost I need to tunnel through, but I can't seem to make a similar SSH command work.
Diagram:
Laptop -> Jumphost1 -> Jumphost2 -> Remote_HTTP_Server
ssh tunneling
add a comment |
What I'm trying to determine is how do you tunnel HTTPS traffic through more than 1 host? Normally what I do when I have to jump through 1 host is the following:
# URL Access Tunnel: https://127.0.0.1:1234
ssh -L 1234:TARGET_SERVER:443 jumphost.foo.com
Then I can connect my browser to https://127.0.0.1:1234
and I'm good to go. But now I have a 2nd jumphost I need to tunnel through, but I can't seem to make a similar SSH command work.
Diagram:
Laptop -> Jumphost1 -> Jumphost2 -> Remote_HTTP_Server
ssh tunneling
What I'm trying to determine is how do you tunnel HTTPS traffic through more than 1 host? Normally what I do when I have to jump through 1 host is the following:
# URL Access Tunnel: https://127.0.0.1:1234
ssh -L 1234:TARGET_SERVER:443 jumphost.foo.com
Then I can connect my browser to https://127.0.0.1:1234
and I'm good to go. But now I have a 2nd jumphost I need to tunnel through, but I can't seem to make a similar SSH command work.
Diagram:
Laptop -> Jumphost1 -> Jumphost2 -> Remote_HTTP_Server
ssh tunneling
ssh tunneling
edited Dec 21 '18 at 9:23
SouravGhosh
493311
493311
asked Dec 21 '18 at 4:01
Alby
101
101
add a comment |
add a comment |
1 Answer
1
active
oldest
votes
Use -J
(or ProxyJump
ssh_config keyword) to connect first to jumphost1
and then to jumphost2
:
ssh -L 1234:TARGET_SERVER:443 -J jumphost1 jumphost2
You may use N
intermediate jumphosts in your ssh chain with
ssh -L 1234:TARGET_SERVER:443 -J jumphost1,jumphost2,...,jumphostN jumphostN+1
See the OpenSSH Cookbook and the OpenSSH man page for a ProxyJump
overview.
Thanks.. This worked like a charm
– Alby
Dec 21 '18 at 15:34
add a comment |
Your Answer
StackExchange.ready(function()
var channelOptions =
tags: "".split(" "),
id: "106"
;
initTagRenderer("".split(" "), "".split(" "), channelOptions);
StackExchange.using("externalEditor", function()
// Have to fire editor after snippets, if snippets enabled
if (StackExchange.settings.snippets.snippetsEnabled)
StackExchange.using("snippets", function()
createEditor();
);
else
createEditor();
);
function createEditor()
StackExchange.prepareEditor(
heartbeatType: 'answer',
autoActivateHeartbeat: false,
convertImagesToLinks: false,
noModals: true,
showLowRepImageUploadWarning: true,
reputationToPostImages: null,
bindNavPrevention: true,
postfix: "",
imageUploader:
brandingHtml: "Powered by u003ca class="icon-imgur-white" href="https://imgur.com/"u003eu003c/au003e",
contentPolicyHtml: "User contributions licensed under u003ca href="https://creativecommons.org/licenses/by-sa/3.0/"u003ecc by-sa 3.0 with attribution requiredu003c/au003e u003ca href="https://stackoverflow.com/legal/content-policy"u003e(content policy)u003c/au003e",
allowUrls: true
,
onDemand: true,
discardSelector: ".discard-answer"
,immediatelyShowMarkdownHelp:true
);
);
Sign up or log in
StackExchange.ready(function ()
StackExchange.helpers.onClickDraftSave('#login-link');
);
Sign up using Google
Sign up using Facebook
Sign up using Email and Password
Post as a guest
Required, but never shown
StackExchange.ready(
function ()
StackExchange.openid.initPostLogin('.new-post-login', 'https%3a%2f%2funix.stackexchange.com%2fquestions%2f490260%2fssh-tunneling-https-traffic-through-2-servers%23new-answer', 'question_page');
);
Post as a guest
Required, but never shown
1 Answer
1
active
oldest
votes
1 Answer
1
active
oldest
votes
active
oldest
votes
active
oldest
votes
Use -J
(or ProxyJump
ssh_config keyword) to connect first to jumphost1
and then to jumphost2
:
ssh -L 1234:TARGET_SERVER:443 -J jumphost1 jumphost2
You may use N
intermediate jumphosts in your ssh chain with
ssh -L 1234:TARGET_SERVER:443 -J jumphost1,jumphost2,...,jumphostN jumphostN+1
See the OpenSSH Cookbook and the OpenSSH man page for a ProxyJump
overview.
Thanks.. This worked like a charm
– Alby
Dec 21 '18 at 15:34
add a comment |
Use -J
(or ProxyJump
ssh_config keyword) to connect first to jumphost1
and then to jumphost2
:
ssh -L 1234:TARGET_SERVER:443 -J jumphost1 jumphost2
You may use N
intermediate jumphosts in your ssh chain with
ssh -L 1234:TARGET_SERVER:443 -J jumphost1,jumphost2,...,jumphostN jumphostN+1
See the OpenSSH Cookbook and the OpenSSH man page for a ProxyJump
overview.
Thanks.. This worked like a charm
– Alby
Dec 21 '18 at 15:34
add a comment |
Use -J
(or ProxyJump
ssh_config keyword) to connect first to jumphost1
and then to jumphost2
:
ssh -L 1234:TARGET_SERVER:443 -J jumphost1 jumphost2
You may use N
intermediate jumphosts in your ssh chain with
ssh -L 1234:TARGET_SERVER:443 -J jumphost1,jumphost2,...,jumphostN jumphostN+1
See the OpenSSH Cookbook and the OpenSSH man page for a ProxyJump
overview.
Use -J
(or ProxyJump
ssh_config keyword) to connect first to jumphost1
and then to jumphost2
:
ssh -L 1234:TARGET_SERVER:443 -J jumphost1 jumphost2
You may use N
intermediate jumphosts in your ssh chain with
ssh -L 1234:TARGET_SERVER:443 -J jumphost1,jumphost2,...,jumphostN jumphostN+1
See the OpenSSH Cookbook and the OpenSSH man page for a ProxyJump
overview.
edited Dec 21 '18 at 4:37
answered Dec 21 '18 at 4:24
tkrennwa
2,5651911
2,5651911
Thanks.. This worked like a charm
– Alby
Dec 21 '18 at 15:34
add a comment |
Thanks.. This worked like a charm
– Alby
Dec 21 '18 at 15:34
Thanks.. This worked like a charm
– Alby
Dec 21 '18 at 15:34
Thanks.. This worked like a charm
– Alby
Dec 21 '18 at 15:34
add a comment |
Thanks for contributing an answer to Unix & Linux Stack Exchange!
- Please be sure to answer the question. Provide details and share your research!
But avoid …
- Asking for help, clarification, or responding to other answers.
- Making statements based on opinion; back them up with references or personal experience.
To learn more, see our tips on writing great answers.
Some of your past answers have not been well-received, and you're in danger of being blocked from answering.
Please pay close attention to the following guidance:
- Please be sure to answer the question. Provide details and share your research!
But avoid …
- Asking for help, clarification, or responding to other answers.
- Making statements based on opinion; back them up with references or personal experience.
To learn more, see our tips on writing great answers.
Sign up or log in
StackExchange.ready(function ()
StackExchange.helpers.onClickDraftSave('#login-link');
);
Sign up using Google
Sign up using Facebook
Sign up using Email and Password
Post as a guest
Required, but never shown
StackExchange.ready(
function ()
StackExchange.openid.initPostLogin('.new-post-login', 'https%3a%2f%2funix.stackexchange.com%2fquestions%2f490260%2fssh-tunneling-https-traffic-through-2-servers%23new-answer', 'question_page');
);
Post as a guest
Required, but never shown
Sign up or log in
StackExchange.ready(function ()
StackExchange.helpers.onClickDraftSave('#login-link');
);
Sign up using Google
Sign up using Facebook
Sign up using Email and Password
Post as a guest
Required, but never shown
Sign up or log in
StackExchange.ready(function ()
StackExchange.helpers.onClickDraftSave('#login-link');
);
Sign up using Google
Sign up using Facebook
Sign up using Email and Password
Post as a guest
Required, but never shown
Sign up or log in
StackExchange.ready(function ()
StackExchange.helpers.onClickDraftSave('#login-link');
);
Sign up using Google
Sign up using Facebook
Sign up using Email and Password
Sign up using Google
Sign up using Facebook
Sign up using Email and Password
Post as a guest
Required, but never shown
Required, but never shown
Required, but never shown
Required, but never shown
Required, but never shown
Required, but never shown
Required, but never shown
Required, but never shown
Required, but never shown