Skip to main content

PortForwarding on Linux .. the easy way - (not through SSH)

this info might not be tempting for home user with only one PC ... but it worth it for ppl who owns a few linux boxes in a large network ... there are many uses of portforwarding ... but i'll leave that to y'all to explore it ... in this thread, i'll explain 2 ways of doing portforwarding on linux ... i'll not cover portforwarding using iptables coz its quite hard to understand .. hehehe .. (i dun understand it oso) ...

OPTION 1: The easy and secure way : Using SSH portforwarding
this method is very easy ... however .. u'll need an SSH server running sumwhere in the network to create the tunnel ...

let assume the SSH server is called : mysshd.server
your pc is called : localhost
and the target PC is called : remote.system

if you want a port in localhost to forward its request to a port to remote.system use this command

$ ssh user@mysshd.server -L [localport]:remote.system:[remoteport]
** dont include the [ ]

this will open a port @ localhost:localport that redirects to remote.system:remoteport ...

if you want a port in mysshd.server to forward it requests to remote.system or another pc on the network ..

$ ssh user@mysshd.server -R [porttoopen]:remote.system:[targetport]
** dont include the [ ]

this will open a port @ mysshd.serverorttoopen that redirects to remote.system:targetport ...

NOTE: the requests are tunnelled through SSH protocol .. so .. its quite slower bcoz SSH encrypts all transactions .. but it is very secure this way ...

Minus point : this can only work to forward TCP connections ... it wont work for UDP

OPTION 2: Using Portfwd

theres a userspace program to do portforwarding on linux ... it is called portfwd .. u can get it from

extract it, compile, and install it ... by default the executable will be installed at /usr/local/sbin/portfwd ..

to forward a TCP connection ... create a plaintext file .. lets call it portfwd.cfg ... and insert these lines

tcp { [localport] { => remote.system:[remoteport] } }
** dont include the [ ]

then execute

# /usr/local/sbin/portfwd -c portfwd.cfg

this will open a TCP port @ localhost:localport to remote.system:remoteport

UDP forwarding is similar ... juz change tcp to udp in the config file ..

for more options .. read the manpages and the documentations

well ... think thats all .... enjoy!! ..

Post a Comment

Popular posts from this blog

Consolidated community site infrastructure on Plone

In Inigo, we believe in helping out local FOSS communities and help them grow. We help out in community events where we can, present FOSS talks, and provide some platforms for local communities to grow. One of such platform is our consolidated community site infrastructure on Plone.

The system/infra and its components was originally developed for the Fedora Malaysia website, while keeping in mind to keep it generic enough so that other communities could use the same components for their own community sites. The infra is already at a usable state, and we can add new sites easily with just a few clicks.

Features in this consolidated infra are:
Document/Content management (Plone built-in)Calendar system (powered by solgema.fullcalendar addon)Conference/BarCamp system (powered by collective.conference addon, which was developed for FUDCon Kuala Lumpur 2012)Blog (powered by Products.Scrawl)Simple yet powerful theming engine (powered by Diazo) - Check out Diazo, you'l…

HOWTO: Mirroring Yum repositories using Yum-Utils

As promised before in one of my previous post, a Howto on how to mirror and manage yum repositories using some of the utilities in yum-utils.

The first step is, well, of course, is to get yum-utils from fedora repository
yum install yum-utils

Reposync is a utility for mirroring and synchronizing local copy of a yum/rpmmetadata repository.

This utility is very useful if you wanted to make a yum repository mirror. Before this, I used "wget -R -np -N" but this method is a little bit tedious and it doesnt work with repos that didn't use directory listing. Plus, it also download together additional site stuff that I don't need/want and it doesn't verify checksum of the downloaded packages.

Mirroring a repo using this utility is easy, just execute this command
reposync -r <repoid> -a <arch> -n
and the repo will be mirrored in a folder with the same name of the repoid in the directory you executed the command. Eg: you executed the command in /mnt/storage/mi…

Tee'ing Python subprocess.Popen output

A little hack for python coders out there who wanted to have a functionality similar to the unix's tee command for redirecting output to multiple places.

import sys
from subprocess import Popen,PIPE
p = Popen(['put','command','and','arguments','here'],stdout=PIPE)

while True:
o = p.stdout.readline()
if o == '' and p.poll() != None: break
# the 'o' variable stores a line from the command's stdout
# do anything u wish with the 'o' variable here
# this loop will break once theres a blank output
# from stdout and the subprocess have ended