Built-In Server-to-Server Connectability (?)

  • Thread starter Thread starter sysreset
  • Start date Start date
AI Thread Summary
To connect to a remote destination server from a mobile client with varying IP addresses, setting up an intermediary server with a fixed IP is a viable solution. This intermediary server allows the client to connect from any IP and then relay requests to the destination server using credentials. Testing can be done via telnet to establish a connection to the intermediary server. However, for enhanced security, using SSH is recommended, as it provides encrypted communication and can eliminate the need for a fixed IP. SSH port forwarding can tunnel other protocols like telnet over SSH, maintaining a telnet appearance at the remote end. SSH supports both password authentication and shared key authentication, ensuring strong encryption for all traffic. It is important to ensure that the chosen web host supports SSH access and that both the intermediary and destination servers are configured for SSL, which does not interfere with SSH encryption.
sysreset
Messages
137
Reaction score
0
"Built-In" Server-to-Server Connectability (?)

I will try to ask this question coherently.

I am required to connect to a remote destination server from a fixed IP address. However, my computer is mobile and calls from various access points with differing IP addresses. So the solution I have selected is to set up an intermediary server with a fixed IP address that allows me (the client) to connect from any IP address and instruct the intermediary server to call the destination server with my username and password. I am testing this setup using telnet. For example, I transmit "telnet intermediaryserver.com 80" and I am connected to the intermediary server on port 80.

The question is what do I do on the intermediary server? Is there built-in functionality on the server that allows this with commands? Does this function reside in Windows, Linux, or Apache servers?
 
Computer science news on Phys.org


You could just do telnet again to the final destination.
Although ssh would be safer and would remove the need for the fixed ip (assuming that is for security) ssh has key exchange to ensure your machine is the one the server expects.

You can do ssh port forwarding to allow telnet (or other protoocls) to go tunnel over ssh but look like telnet at the remote end.
 


Thanks mgb! From my preliminary reading, ssh port forwarding is exactly what I was looking for. (It appears that the ssh client is built into newer versions of linux, so I just need to make sure the web host I choose includes the ssh client, and permissions to access it.)

Does ssh have built-in password protection?
 


Not sure what you mean by password protection.
You can either enter passwords for each login or use shared keys - either way all the traffic is strongly encrypted. Creating the keys for the first time is a bit tricky if you aren't familiar with the terms but there are lots of tutorials.
 


Oh, the intermediate server and the destination server are both SSL. Would that mess with the ssh encryptation?
 
Well, the date has now passed, and Windows 10 is no longer supported. Hopefully, the readers of this forum have done one of the many ways this issue can be handled. If not, do a YouTube search and a smorgasbord of solutions will be returned. What I want to mention is that I chose to use a debloated Windows from a debloater. There are many available options, e.g., Chris Titus Utilities (I used a product called Velotic, which also features AI to prevent your computer from overheating etc...
Back
Top