Networking :: HTTP Requests Always Go By TCP Connect Tunnel?

Aug 14, 2010

How do Http requests and responses go from a client to the server? IS a TCP Connect Tunnel always formed or is there some different mode ?

View 4 Replies


Networking :: Forward All Http/https Requests ?

May 12, 2010

I have a server (Fedora 12) setup at a client's datacenter and the network is setup to allow me ssh access into the server, but prevents me from opening any connections from the server. However, I need to make http and https request from the server. What I'd like to do is forward all http/https traffic through another machine outside the network.

I've been looking at the documentation for ssh and the various options there and have gotten so far as to enable initiating an ssh connection from the client network back to my machine, but am not sure where to take it from there.

Here are some of the commands I've used so far:


I'm attempting to bind port 80 to be forwarded through the local machine. I assume I use "ssh -R" to create a dynamic tunnel to forward requests but I must be missing something.

By the way, root login via ssh is disabled.

View 5 Replies View Related

Networking :: How To Set Up Ssh Tunnel Through Http Proxy?

Mar 10, 2010

My school network uses a http proxy to access the internet, but I am dubious about the security, and so I would like to use http inside ssh to keep my data secure. I don't really know where to start on this, so a step-by-step guide, or links to resources, would be helpful.

View 2 Replies View Related

Networking :: Forward Local HTTP Requests To Remote Proxy?

May 4, 2011

How to forward local HTTP requests to remote Proxy with IPTables ?

View 1 Replies View Related

Networking :: SSH Tunnel Through NTLM Authenticated HTTP Proxy

Mar 7, 2010

I have a problem setting up a SSH tunnel. I know how it's usually done, but the setup is different this time. I am behind a HTTP(S) and FTP proxy, that does NTLM authentication, and I want to access a server beyond the proxy.

So far, the best I have achieved is installing and configuring CNTLM as a local proxy for the authentication part. Using CNTLM, I managed to access and mount a secured (https) DAV share using davfs2. In theory, CNTLM should let me setup permanent tunnels from local ports to distant ports, and it does; however these tunnels don't seem to work for SSH nor for IMAP (another protocol I tried).

I suspect the problem is that neither SSH nor IMAP is HTTP- or FTP-based, but anyway it does not work. So back to square one: how should I proceed to get ssh to connect through the HTTP proxy (with NTLM authentication) to the remote server? For that matter, if there's a better way than SSH to create a tunnel, that would work in my situation, that's OK with me. Just in case, here are the relevant parts from my firewall setup on the server:

# default policies
iptables -t filter -P INPUT DROP
iptables -t filter -P FORWARD DROP
iptables -t filter -P OUTPUT ACCEPT

# reset
iptables -t filter -F INPUT
iptables -t filter -F FORWARD
iptables -t filter -F OUTPUT

# allow continuation of established connections
iptables -t filter -A INPUT -m state --state ESTABLISHED,RELATED -j ACCEPT
iptables -t filter -A INPUT -f -j ACCEPT

# allow local connections
iptables -t filter -A INPUT -i lo -j ACCEPT

# open ports:
# ssh
iptables -t filter -A INPUT -p tcp --dport 22 -j ACCEPT

View 2 Replies View Related

OpenSUSE Network :: Block HTTP Requests From Other Computers?

May 30, 2011

My computer shares an internet connection using an ADSL router.There are other three machines.I have set up a Apache server for learning purpose and I want it to be inaccessible from anywhere else including the PCs in the network.When I enter my ip-address assigned in the network ( from other computer,I get my ppages and I dont want that.

How can I block HTTP requests from other computers?

View 6 Replies View Related

General :: Configure Apache To Use Https Instead Of Http For Some Requests?

Mar 7, 2011

For some of the files that I share using Apache, I want to make sure that they are served ONLY via https.

How can I configure this for Apache?

View 1 Replies View Related

Server :: Redirect The Incoming Http Requests To The Appropriate Webserver?

Mar 20, 2011

We have a cisco ASA firewall at work,which redirects all http traffic to our webserver. We have to install a new website ,but it can't be installed to the same server. Setting up a squid reverse proxy can redirect the incoming http requests to the appropriate webserver? If yes, could I get some directions on howto?

View 5 Replies View Related

Ubuntu Networking :: Connect Samba Through SSH Tunnel?

Nov 13, 2010

I have a server running Ubuntu Server 10.04 that is a VirtualBox/Samba/SSH server. I have port forwarding set up for ports 22 and 3389 (SSH and RDP) and I want to access the Samba share without opening any other ports. I can connect to it from my internal network, but I want to be able to access it from school. My best guess would be to tunnel the Samba port through SSH, but I don't know how. I will be connecting to it from Ubuntu 10.10 Desktop.

View 9 Replies View Related

Ubuntu Networking :: Connect Through A Tunnel On A Different Server?

Jul 19, 2011

I use two Ubuntu machines, one at home and one at work. In order to connect to the machine at work from home I need to connect through a "tunnel server" that controls all the traffic to the machines at work.I am able to connect with ssh to the tunnel server and from the tunnel server ssh my own machine at work. My question is how do I retrieve files form my work machine to the home machine. How do I sync folders between the machines using rsync when the "tunnel server" is in between?

View 3 Replies View Related

Networking :: Connect To Windows Domain Via VPN Tunnel

Mar 16, 2011

I have my home network (connected to internet via VPN) and my "MS-based" work network (opened to internet via VPN). In windows I can easily create two VPN connections to enter my Work domain, but how can I do that in Linux? Network Manager allows only one VPN connection... The best way is to create pptp tunnel over configured in Network Manager ppp0. I've googled a lot but still didn't find any working example.

View 3 Replies View Related

General :: Utility To Execute HTTP Requests And Examine Raw Responses

Jul 24, 2010

I'm learning about the HTTP protocol and I'd like to know if there's a tool I can use to input a HTTP request I have created myself that will output the raw response. I've had a look at cURL and wget but they don't seem to have an obvious option to do this. For example:

$ http_response < my_http_request.txt
HTTP/1.0 200 OK
Date: Sat, 24 Jul 2010 18:43:58 GMT

View 3 Replies View Related

Server :: Apache Stops Responding To HTTP Requests Every Few Days?

Dec 28, 2010

I've had a VPS running Ubuntu 9.10 x64 server, hosting 3 websites of mine for a few months now. This problem has been happening for a while. Every once in a while, probably every 2 or 3 days, I'll wake up in the morning, and apache won't be responding, no web pages will load. /etc/init.d/apache2 status, reports that apache is functioning properly. Every time I simply have to restart the daemon and things run fine for another few days.

I thought maybe it was a memory issue, so I lowered the MaxClients in the prefork module from 50 to 30 a few days ago, but the same thing is still happening. My VPS has 512MB of ram, burstable to 1GB, and according to Virtuozzo, there was only one night of high traffic where I even came close to that soft limit. I've checked my syslog, and there's absolutely nothing in there about apache. I've checked apache's error.log as well, and there's nothing in there that would indicate a problem either.

View 3 Replies View Related

Server :: Automatic Rewrites Or Something To Change Http Into Https Requests?

Mar 10, 2011

For one project I use a web hosting service. I wanted the entire site to be https, so I bought a service from them in which they automatically install a trusted cert so people can access the site through https protocol. Since http is still available, though, I need to do automatic rewrites or something to change http into https requests. (I don't have access to their Apache server configuration files or anything like that.)I found on the net this code to add to my .htaccess file:

RewriteCond %{HTTPS} off
RewriteRule (.*) https://%{HTTP_HOST}%{REQUEST_URI}


View 3 Replies View Related

Server :: Apache Reverse Proxy Slow In Serving HTTP Requests

Mar 18, 2010

A Linux (CentOS5.3) server is setup with apache reverse proxy. The reverse proxy server is opened to outside and an internal server is mapped to ProxyPass configuration. SSL certificate is also installed on the Apache reverse proxy server. The problem is, it is extremely slow in serving http requests through reverse proxy. There is no problem with server resources or bandwidth. When the internal server is directly accessed through Internet, there is no delay. The backend server and the reverse proxy server are also on the same switch (same subnet). When I searched the Net, there were recommendations to enable cache in Apache. I did so as follows in httpd.conf.

<IfModule mod_disk_cache.c>
CacheEnable disk /
CacheRoot "/var/cache/mod_proxy"
CacheDirLevels 5
CacheDirLength 3

But still there is no progress. Do I want to enable cache in ssl.conf too? Or is there any other workaround to speed up Apache reverse proxy. Is there a way to check that caching is happening?

View 4 Replies View Related

Fedora Networking :: Can't Connect VNC Using Http

Aug 6, 2009

I have Fedora 11 and have successfully set up VNC so that I can connect within the network (direct using vnc client/server setup). I am in the middle of working on a problem and have a fried who is in another city and was trying to set up VNC so that he could connect via http, which I know is possible (that it listens on range 5800 + the display number - mine is 3 in this instance). For the life of me I cannot get the java http viewer to work, here is what I have done so far: My vncservers file:


My router is set up to forward incoming requests on the range 5900-5910 and 5800-5800 to this computer. I have opened ports 5902, 5903, 5802, and 5803 on my linux firewall. So far as I know, this is all that is necessary..well. Whenever I attempt to connect via [URL]:5803 I get a time out error. What could be wrong?

View 5 Replies View Related

Ubuntu Networking :: SSH & HTTP Unable To Connect?

Mar 23, 2011

I have an Ubuntu 10.10 machine hosting a virtual Windows machine on virtualbox. I have 3 servers I connect to using SSH with password authentication, on standard port (22)For some unknown reason, I have one server that I cannot connect to Via SSH using putty/terminal or HTTP via Browser from my Host nix box, but my Virtual machine CAN connect via both. Same machine, same network, one virtual with a bridged adapter, one physical network card connected to my network.

View 4 Replies View Related

CentOS 5 Networking :: Connect To HTTP Proxy Server ?

May 16, 2010

I'm trying to set up a server for an NPO who connects to the Internet through an internal proxy (Websense). I can't access the Internet unless through the proxy.

Since it's a server I did not install a GUI so I'm wondering how to connect the new server to said proxy server. I have the IP address, port number and username-password for the proxy server. The new server has a static IP address and is ready too go!

View 6 Replies View Related

Server :: Squid Accepts Only HTTP Requests But Speaks FTP On The Server Side?

Apr 26, 2011

Here is my query:

Squid document says that Squid accepts only HTTP requests but speaks FTP on the server side when FTP object are requested.

We call Squid HTTP and FTP caching proxy server. Does it also caches FTP contents? Is it possible to configure FTP clients to use Squid cache? When we make an FTP request to an FTP site via Squid will it be bypassed?

View 5 Replies View Related

Networking :: Craft A Valid Http/1.1 Request For Getting Http Headers (not The Html File Itself)

Sep 27, 2010

Using netcat, nc(1), craft a valid http/1.1 request for getting http headers (not the html file itself!) for the main index page of www dot aalto dot fi. What request method did you use? Which headers did you need to send to the server? What was the status code for the request? Which headers did the server return? Explain the purpose of each header.

nc -v www dot aalto dot fi 8080
host: www dot aalto dot fi
And it returns:
200 OK
Content-Length: 858
Content-Type: text/html
Last-Modified: Thu, 02 Sep 2010 12:46:01 GMT

I really don't know what does it mean. Question 2: Using netcat, nc(1), start a bogus web server listening on the loopback interface port 8080. Verify with netstat(, that the server really is listening where it should be. Direct your browser to the bogus server and capture the User-Agent: header "Direct your browser to the bogus server and capture the User-Agent: header" I don't understand this question.

View 2 Replies View Related

Software :: MySQL Cannot Start SSH Tunnel Manager - Cannot Connect To Database Server

Jun 7, 2011

When i try to open a connection to start querying i get this message:

Cannot Connect to Database Server
Cannot start SSH tunnel manager

1 Check that mysql is running on server

2 Check that mysql is running on port 3306 (note: 3306 is the default, but this can be changed)

3 Check the root has rights to connect to from your address (mysql rights define what clients can connect to the server and from which machines)

4 Make sure you are both providing a password if needed and using the correct password for connecting from the host address you're connecting from

View 2 Replies View Related

Software :: Using VNC To Connect To Home Computer From University And Vice Versa Using A Reverse Ssh Tunnel

Jun 2, 2010

I am an heavy user of VNC, i use it to connect to my home computer from university and vice versa using a reverse ssh tunnel. Now, the screen at my university pc is using an higher resolution than the one of my laptop, so I can see only part of the screen. How can I address this? so that I can see full screen? Also, RDP works quicker than VNC, is there any setting I could use to speed up VNC?

View 5 Replies View Related

Fedora :: Can't Connect To Non-HTTP

Dec 16, 2010

I'm using the Netopia 2247 router. I'm on Fedora 13, on a Thinkpad T60.

For some reason, ever since I switched my ISP (just last night), I can't connect to any non-HTTP services. I've tried Thunderbird for IMAP, FileZilla for FTP/SFTP, and Empathy for XMPP. Nothing connects. Chromium, Firefox for HTTP: works just fine. I know it seems really far stretched to think that this could be an issue on my end, but: I've checked with the ISP, and they insist that there's no reason this should be happening. They will be coming in tomorrow to take a look at wiring and all that though. I'm able to access my IMAP email via my smartphone's built-in mail client, via my new ISP. This is using a Nokia N82, with default messaging client (just called Messaging). But, who knows, maybe N82's email client actually uses HTTP? (Unfortunately, my only "desktop" computer is T60, and I only have Fedora installed on it; I realize the icon at top right shows Windows, but that's my work desktop, and I definitely can't take that home for testing). I've checked the firewall settings on the router, and put them at the very lowest setting.

Again, I know it seems far fetched that there's something wrong with my system (e.g., I've traveled with my laptop and have never had any problem accessing IMAP or FTP on other connections), but I just want to make sure I've exhausted every possibility. So, if you could entertain the possibility that it's something on my end, what might it be?

Maybe disabling SELinux might help? I'm going to try that when I get back home. Although: I feel like an SELinux dialog would've popped up if that was the problem.

View 10 Replies View Related

Ubuntu :: Can Only Connect To MSN Using HTTP Method

Jan 11, 2010

I have come across a fairly minor issue however. When using any IM clients I am unable to login to MSN using the direct connection method. Instead I find myself having to connect using the HTTP method. I wouldn't worry about this except many of my contacts are complaining that they are getting "message unabled to be delivered" errors regularly when trying to contact me.

View 8 Replies View Related

OpenSUSE Network :: Yast Could Not Connect With HTTP Proxy

Apr 25, 2010

My box has to connect to internet using specified http proxy.I have set proxy in both kde control center and yast2 control center. They both tell me the proxy works fine. But when I really try to use yast2 to update my system, it report an error:

Failed to download ./repo/repoindex.xml from [URL]
History: - [] URI = [URL]

Even I try
export http_proxy=http://XXXX
yast in command line,the error still exist.

In debian apt-get and slackware slackpkg,my proxy works fine. So I am sure it is not my fault and maybe it is a bug of yast2.

View 7 Replies View Related

Networking :: Redirecting Ssl Requests With Squid?

Feb 24, 2010

say i have an apache server configured for ssl/non ssl virtual hosts and a proxy configured as follows (see squid.conf)the ssl on each name based virtual host is configured on its own port (only 7 of the domains need this the rest are just media and other insignificant bits of data but domains 1-7 contain forms that require specific personal information that may be technically illegal to transmit without encryption)if any additional information is needed just let me know

domain1 is port 443
domain2 is port 444
domain3 is port 445


View 2 Replies View Related

General :: Using Command Line To Connect To A Wireless Network With An Http Login?

Apr 18, 2010

I'm trying to connect to a wifi network where it hijacks all requests and redirects you to a page where you have to agree to a terms of use before it lets you connect to the actual outside world. This is a pretty common practice, and usually doesn't pose much of a problem. However, I've got a computer running Ubuntu 9.10 server with no windowing system. How can I use the command line to agree to the terms of use? I don't have internet access on the computer to download packages via apt-get or anything like that. Sure, I can think of any number of workarounds, but I suspect there's an easy way to use wget or curl or something.

Basically, I need a command line solution for sending an HTTP POST request essentially clicking on a button. For future reference, it'd be helpful to know how to send a POST request with, say, a username and password if I ever find myself in that situation in another hotel or airport.

View 2 Replies View Related

Ubuntu :: Gpgkeys: HTTP Fetch Error 7: Couldn't Connect To Host

Mar 24, 2010

When I run sudo apt-get update I get the following message at the bottom:


I have tried numerous ways to add the keys i.e: gpg --keyserver --recv-keys EF4186FE247510BE && gpg --export --armor EF4186FE247510BE | sudo apt-key add - However, I then get the following message:


View 3 Replies View Related

Networking :: Balance The Internet Requests From LAN Using 2 Connections?

Feb 17, 2010

I have a firewall ( a pc with debian 5) with 2 internet connections. each connected to a ethernet card (the firewall has 2 ethernet pci cards so it has one connection per card)how can i balance the internet requests from my LAN using this 2 connections?

View 3 Replies View Related

Networking :: IPTables - Inspect / Modify DNS Requests?

May 10, 2010

I'm trying to work out a way to inspect/modify dns requests as an advertising filter. Iptables is a good place to do this, but I'm having some problems disassembling the packet. On my dev box, when a DNS reply is returned from a request made on the dev box. I use this rule to route the reply packet through a queue:

iptables -A INPUT -p udp --sport 53 -j NFQUEUE --queue-num 1

Will the rule catch the inbound udp packet with the dns reply in it? I get something in the queue, but it's unintelligible when attempting to disassemble the packet. I don't want to move onto looking at my program until I get some feedback on the rule.

Here's a primitive diagram of what I'm working towards:
host ->DNS request->iptables(no outbound rules)-> DNS Server
->DNS Answer ->iptables(queue udp 53 packets)
->inspect packet program-> Allow/Deny -> host processes allowed packets

View 1 Replies View Related

Copyrights 2005-15, All rights reserved