Configuration help needed
Hi!
We are evaluating RDM 11.0 for our support services. Pretty much all we need seems to work fine until I tested our inhouse attendant solution and it's agent.
Setup is like this:
RDM in my desktop --> vpn to management network --> desktop gets a 10.0.x.x address from the pool
To get this agent working I need to connect to the attendant server with ssh to port 10000; then I can start the agent and agent will connect
to the server's db.
In RDM I tried this with different ways and did not get it working. I'm getting the ssh tunnel open, but don't get the agent attached to that session.
I see definitions of remote port (set that to 10000) and also local port. I haven't set anything to the local port, because the session is using a random port from the high port range 52xxxx to 46xxxx.
Is there a way to configure this or is development needed?
Br,
V-P
All Comments (3)
Hello,
From what I understand, you want to create a local SSH tunnel from your computer with a port randomly generated by your agent, to your remote host at port 10000, is that right? If that is the case, would prompting for the local port when opening the tunnel session in RDM help your case? I'm not sure if we can forward all of ports 46xxx to 52xxx locally to the same remote host's port in one go, with how things currently are.
Regards,
Hubert Mireault
Hello Hubert!
You understood correctly. Well, we'll finish our evaluation and get back to this in the implementation phase.
A little bit more info; this is the screen log from RDM (configured a static local ip and port in RDM):
[21.1.2016 9:17:49] Looking up host "10.0.115.36"
[21.1.2016 9:17:49] Connecting to 10.0.115.36 port 22
[21.1.2016 9:17:49] We claim version: SSH-2.0-PuTTY_Release_0.64
[21.1.2016 9:17:49] Server version: SSH-2.0-OpenSSH_4.3
[21.1.2016 9:17:49] We believe remote version has SSH-2 channel request bug
[21.1.2016 9:17:49] Using SSH protocol version 2
[21.1.2016 9:17:49] Doing Diffie-Hellman group exchange
[21.1.2016 9:17:49] Doing Diffie-Hellman key exchange with hash SHA-1
[21.1.2016 9:17:50] Host key fingerprint is:
[21.1.2016 9:17:52] ssh-rsa 2048 72:0e:0c:ba:80:ee:ac:87:7e:58:90:d5:81:b9:21:ca
[21.1.2016 9:17:52] Initialised AES-256 SDCTR client->server encryption
[21.1.2016 9:17:52] Initialised HMAC-SHA1 client->server MAC algorithm
[21.1.2016 9:17:52] Initialised AES-256 SDCTR server->client encryption
[21.1.2016 9:17:52] Initialised HMAC-SHA1 server->client MAC algorithm
[21.1.2016 9:17:52] Using SSPI from SECUR32.DLL
[21.1.2016 9:17:52] Attempting GSSAPI authentication
[21.1.2016 9:17:52] GSSAPI authentication request refused
[21.1.2016 9:17:52] Sent password
[21.1.2016 9:17:52] Access granted
[21.1.2016 9:17:52] Opening session as main channel
[21.1.2016 9:17:52] Opened main channel
[21.1.2016 9:17:52] Local port 10.0.82.9:54109 forwarding to 10.0.115.36:10000
[21.1.2016 9:17:52] Allocated pty (ospeed 38400bps, ispeed 38400bps)
[21.1.2016 9:17:52] Started a shell/command
My pc's netstat is saying:
proto local address foreign address state
TCP 10.0.82.9:58044 10.0.115.36 established
Br,
/V-P
I'll try and see if we could have a way to forward a range of ports.
Regards,
Hubert Mireault