SSH with PuTTY through a proxy

Myself — Fri, 18 Dec 2009 00:06:32 +0000

For security reasons, I had to set all my server’s firewalls to accept connections on the SSH port (22) only from my office IP. I would have added my home IP addres in the access list, if it would have been static. But at home I have a dynamic IP so I can’t use IP-based access control in this case. So the only thing I could do to admin my servers from home was to connect first to the office and then to connect, from there, on the server that had to be administered.

Today I set up a new way to connect to my servers from anywhere. I installed a proxy on the office server, and configured PuTTY to use it for the connections to the secured servers. The following are the steps to configure a Linux server (Ubuntu in my case) and PuTTY to make a SSH connection through a proxy:

1. Install mod_proxy and mod_proxy_connect for Apache, and enable them. In Ubuntu (mine is 8.04), these modules are already installed and all you need to do is to enable them:

# a2enmod proxy
# a2enmod proxy_connect

2. Configure the proxy by editing the “proxy.conf” file:



    ProxyRequests On
    AllowCONNECT 22

    
        AddDefaultCharset off
        Order deny,allow
        Allow from all
        AuthType Basic
        AuthName "SSH Proxy"
        AuthUserFile /path/to/password/file
        Require user myusername
    
    ProxyVia Block

3. Restart Apache
4. Configure PuTTY to use the proxy for the corresponding connections. For this, in the left tree, the “Proxy” submenu in the “Connection” menu must be used. There, select “HTTP” as Proxy type, then enter the hostname of your newly configured proxy, the username and password.

Now you should have a functioning proxied SSH connection! Cool!

Pieces of Life... » ssh

SSH with PuTTY through a proxy