Arch Linux

mrcold

Member

Registered: 2008-01-24

Posts: 150

SSH from school network

I have an apartment with off campus, and I would like to be able to ssh  to it from my laptop while using the campus provided wireless network.  However, they have pretty much every port blocked and ssh won't work.  Is there anything i can do? does ssh run through port 80?

I dont' really know what to try so i havent' really done anything except try to connect.  all i get is 'connection refused'

SSH works elsewhere.

kclive18

Member

From: Columbus, Ohio, USA

Registered: 2008-05-08

Posts: 219

Re: SSH from school network

SSH normally runs through port 22 (although many admins will assign a different port to SSH for security reasons).  Looks like your school blocked everything except port 80.

---

My Rigs:
- Mid-2007 iMac 20", Intel 2GHz Core 2 Duo, 2x1GB DDR2-800, 250GB SATA HDD, and...MIGHTY MOUSE!!! , OSX 10.5 Leopard, ATI Radeon 2400XT 128MB
- HP zv6203cl, AMD Athlon 64 3200 S939, 2x512MB DDR400, 80GB 4200rpm HDD, ATI Radeon Xpress 200M 128MB, Arch i686
- 1986 Gibson SG Junior Cherry Red, Ibanez 15W amp, DigiTech RP250 modeling processor

mrcold

Member

Registered: 2008-01-24

Posts: 150

Re: SSH from school network

SSH normally runs through port 22 (although many admins will assign a different port to SSH for security reasons).  Looks like your school blocked everything except port 80.

i know that.  I am asking if i can use port 80(i know how to change it, i just need to know if it will work).. or if there is any way around it.
thanks though..

Last edited by mrcold (2008-08-27 21:04:20)

tam1138

Member

Registered: 2007-09-10

Posts: 238

Re: SSH from school network

The "port" directive in /etc/ssh/sshd_config controls which port the ssh daemon listens on.  When ssh'ing, you can specify destination port with the -p switch.  Manpages are your friend.

cactus

Taco Eater

From: t͈̫̹ͨa͖͕͎̱͈ͨ͆ć̥̖̝o̫̫̼s͈̭̱̞͍̃!̰

Registered: 2004-05-25

Posts: 4,622

Website

Re: SSH from school network

use stunnel!
tunnel the ssh traffic over an https tunnel.
heh heh

or.. use openvpn..
or.. tunnel over http
or.. just change the port. maybe they pass another port besides just http/https (like smtps or imaps or something)

---

"Be conservative in what you send; be liberal in what you accept." -- Postel's Law
"tacos" -- Cactus' Law
"t̥͍͎̪̪͗a̴̻̩͈͚ͨc̠o̩̙͈ͫͅs͙͎̙͊ ͔͇̫̜t͎̳̀a̜̞̗ͩc̗͍͚o̲̯̿s̖̣̤̙͌ ̖̜̈ț̰̫͓ạ̪͖̳c̲͎͕̰̯̃̈o͉ͅs̪ͪ ̜̻̖̜͕" -- -̖͚̫̙̓-̺̠͇ͤ̃ ̜̪̜ͯZ͔̗̭̞ͪA̝͈̙͖̩L͉̠̺͓G̙̞̦͖O̳̗͍

mrcold

Member

Registered: 2008-01-24

Posts: 150

Re: SSH from school network

The "port" directive in /etc/ssh/sshd_config controls which port the ssh daemon listens on.  When ssh'ing, you can specify destination port with the -p switch.  Manpages are your friend.

I already know how to change the port. (but thanks anyway )

use stunnel!
tunnel the ssh traffic over an https tunnel.
heh heh
smile

or.. use openvpn..
or.. tunnel over http
or.. just change the port. maybe they pass another port besides just http/https (like smtps or imaps or something)

Is there any way to find out what ports are opened?

vuboy

Member

From: Canada

Registered: 2008-03-04

Posts: 78

Re: SSH from school network

nmap to find open port maybe?

mrcold

Member

Registered: 2008-01-24

Posts: 150

Re: SSH from school network

nmap to find open port maybe?

that looks like it will work.. thanks

If finding a port doesn't work for me can anyone point out to me a decent stunnel how-to? the website is too much for me to make sense of.

Ruckus

Member

Registered: 2007-02-17

Posts: 204

Re: SSH from school network

Just connecting over port 80 would probably work so long as they don't have a transparent http proxy running for port 80. If they do, then you can probably use the SSL port (443). nmap would work to find any other open ports though. Once you manage to get an SSH connection, you can use SSH tunneling to tunnel all firefox/pidgin/anyother traffic you want through your home connection to avoid the school filters.

quarkup

Member

From: Portugal

Registered: 2008-09-07

Posts: 497

Website

Re: SSH from school network

to show up open ports, use this:

nmap -PS -p 1-65535 --open -T5 <target>

then to be certain of (or show) the service associated to those ports nmap has shown you up (like ssh/ftp/http/ etc) use

nmap -A -p <port1>,<port2>,<etc...> <target>

and btw: you got a list of services and ports on /etc/services

Last edited by quarkup (2009-01-14 18:30:50)

---

If people do not believe that mathematics is simple, it is only because they do not realize how complicated life is.
Simplicity is the ultimate sophistication.

Sjoden

Member

From: WA

Registered: 2007-08-16

Posts: 380

Website

Re: SSH from school network

Also, be careful using nmap at school or "against" their machines. Although harmless, the sysadmins probably won't like it.

---

website

Ruckus

Member

Registered: 2007-02-17

Posts: 204

Re: SSH from school network

I'd just set openssh to listen on port 443, I can almost guarantee it won't be blocked. It's used for SSL connections.

strankan

Member

From: Sundsvall - Sweden

Registered: 2006-11-08

Posts: 97

Re: SSH from school network

I'd just set openssh to listen on port 443, I can almost guarantee it won't be blocked. It's used for SSL connections.

That's the exact way I do it to connect from work. Easy and almost always open.