You are here

Tunneling through school's firewall

17 posts / 0 new
Last post
Zaza
Offline
Last seen: 15 years 7 months ago
Joined: 2009-04-09 14:41
Tunneling through school's firewall

I'm kind of frustrated. I've been trying to tunnel through my schools firewall to no avail. I've tried custom ports, port 80, 443, 8080, and even one I got from netstat that said was already established. Why isn't this working? Thanks in advance for any and all help.

wraithdu
Offline
Last seen: 11 years 5 months ago
Developer
Joined: 2007-06-27 20:22
You didn't mention anything

You didn't mention anything about how you're trying to tunnel. Software? Simple net proxy? Local SOCKS proxy over SSH? VPN?

Mir
Mir's picture
Offline
Last seen: 12 years 4 months ago
Joined: 2007-12-03 16:07
this is the wrong site and on

this is the wrong site and on top of that this is the wrong board for this topic.

Zaza
Offline
Last seen: 15 years 7 months ago
Joined: 2009-04-09 14:41
Well, I'm using freesshd on

Well, I'm using freesshd on my home computer to enable tunneling and use a secure VNC connection from an outside source. On my flashdrive, I'm using PuTTY Portable to tunnel in and UltraVNC Viewer Portable as a VNC client.

I figured this would be the right place to put this because I'm using PortableApps software and, using the search function, I found a similar thread in this very board. Sorry for any misunderstandings.

wraithdu
Offline
Last seen: 11 years 5 months ago
Developer
Joined: 2007-06-27 20:22
So you're connecting via SSH

So you're connecting via SSH to your home computer via PuTTY, then trying to remote control your home computer with VNC. Where in the process are you failing?

consul
consul's picture
Offline
Last seen: 1 year 2 months ago
Joined: 2007-05-02 13:47
some feel it's wrong 'here' ...

because technically some would be asking how to get around office/school policy, which may had punitive/legal ramifications.
But best of luck.

Don't be an uberPr∅. They are stinky.

wraithdu
Offline
Last seen: 11 years 5 months ago
Developer
Joined: 2007-06-27 20:22
Agreed. Depends on his

Agreed. Depends on his usage. As yet, I don't see anything wrong with the conversation.

Zaza
Offline
Last seen: 15 years 7 months ago
Joined: 2009-04-09 14:41
I cannot seem to find a port

I cannot seem to find a port that's open on the school's computers. As previously stated, I've used the typical 80 or 443 to no avail. Additionally, I've even typed netstat in the command prompt on the school computer and entered in a port that was already established. Each time the connection times out before I get to the login prompt. So--that's my problem. I can't find an open port. The connection works at home on both my computer and my iPod so I'm at a loss here.

wraithdu
Offline
Last seen: 11 years 5 months ago
Developer
Joined: 2007-06-27 20:22
That doesn't make sense. I

That doesn't make sense. I would bet the problem is your home setup. Either you're behind a router and not forwarding the port correctly, or you have a firewall that is blocking the connection. Ports 80 and 443 have to be open, or the web wouldn't work at school.

Or...your school has a web (HTTP) proxy, in which case you'll need to setup the HTTP proxy correctly in PuTTY.

Zaza
Offline
Last seen: 15 years 7 months ago
Joined: 2009-04-09 14:41
No, I'm thinking your first

No, I'm thinking your first idea was right. When I wrote my last reply I was using a computer in the Apple store. Right after I finished, I connected my iPod to Apple's Wi-Fi connection and tried to access my home computer. Same problem.

I didn't bother to forward port 80 on my home computer and router because I figured it'd be open natively, but maybe not. I'll try forwarding it, but I won't be able to test it till later. I'll be pretty embarrassed if that's the problem, though. :/

wraithdu
Offline
Last seen: 11 years 5 months ago
Developer
Joined: 2007-06-27 20:22
On home routers, nothing is

On home routers, nothing is forwarded by default. How your router responds to a port request is dependent on the hardware vendor or configuration (if there's an option for it). It could either respond that the port is closed, or not resond at all as if the port does not exist (preferable).

Either way, unless you explicitly forward the port to your internal computer, it's not going to work.

Zaza
Offline
Last seen: 15 years 7 months ago
Joined: 2009-04-09 14:41
After forwarding the port, it

After forwarding the port, it still doesn't work from a remote location. Anybody have any more ideas?

wraithdu
Offline
Last seen: 11 years 5 months ago
Developer
Joined: 2007-06-27 20:22
Sorry, without seeing your

Sorry, without seeing your exact setup and playing with it myself, I'm out of guesses. Try to get it working from a friend's house or something (fewer variables) then go back to trying from your school. Try performing some other tests with your home router to see if you're forwarding ports correctly. You can try the Shields Up website, or this page from uTorrent:

http://www.utorrent.com/testport.php?port=40224

where you can test any port, just change the URL.

ottosykora
Offline
Last seen: 9 hours 4 min ago
Joined: 2007-10-11 17:48
all such tools

need both ways connection and there will be no way communicate over port 80 or similar in the school. I mean out traffic yes, but how does it talk back? What ports did you set up there?
You may be able to ocntact your home computer on port 80 if there is something listening on that port there. But how will this something answer back? All low ports are definitely closed on the school side i assume.

If you have only simple outbound traffic allowed on 'lower' ports , then you can also use gadgets software like www.teamviewer.com, it exist also in portable version on their website.
In fact we are using it now frequently for remote maintenance of server at our customers site. And those are securely managed networks with all kinds of firewalls etc.
The traffic itself is encrypted with aes256, so not simple to monitor and you do not disturb the firewall settings or annoy otherwise the admin of the school network.

Such software uses server in the middle, which does kind of 'twist' the paths and ports, so both sides can use common 80 for outbound traffic similar to websurfing and will get answers on high ports similar to a browser.

Otto Sykora
Basel, Switzerland

ottosykora
Offline
Last seen: 9 hours 4 min ago
Joined: 2007-10-11 17:48
only outbound traffic free

in your school, this is the rule you have to start with. No ports open at all. There is no router or any similar manageable device that will have ports open for incoming traffic, unless there is DMZ and in it a webserver is running or so. But in that case the webserver will give answer to inbound calls on that port.

Otto Sykora
Basel, Switzerland

Zaza
Offline
Last seen: 15 years 7 months ago
Joined: 2009-04-09 14:41
Okay, well

Okay, well I got the SSH connection working, but whenever I attempt to connect to the server with my VNC client I get an error that says,

"Connection failed - Error reading Protocol Version

Possible causes:

- You've forgotten to select a DSMPlugin and the Server uses a DSMPlugin
- Viewer and Server are nto compatible (they use different RFB protocoles)
- Bad connection"

wraithdu
Offline
Last seen: 11 years 5 months ago
Developer
Joined: 2007-06-27 20:22
I think you need to read the

I think you need to read the documentation for your various programs a little more carefully. Once you have the SSH connection, if you've set up PuTTY correctly then it will be running a local SOCKS proxy. You need to set up your VNC client to use that local proxy. This kind of thing isn't just 'run and go'.

Log in or register to post comments