Devolutions ForumDevolutions Forum

Dynamic creation of SSH connections for RDP tunneling / Bastion server configuration?

Dynamic creation of SSH connections for RDP tunneling / Bastion server configuration?

avatar
Neonsun

Ref this old post: https://forum.devolutions.net/topic17690-dynamic-ssh-tunnel-creation.aspx

We are considering using SSH bastion server(s) for connecting to our SaaS environments, is there a good way of setting up a single connection entry for the SSH tunnel instead of having to create a separate tunnel for each host entry (we have hundreds of server entries) with a dynamic listening port, and pasting in the remote host as a parameter instead? The old post didn't seem to reach a conclusion, but since it's three years old, perhaps there is better support for this now? The alternative is setting up an RDS server/farm I suppose, but if we can avoid the additional CAL licensing that would be really great. :)

Other users, feel free to chime in, not just staff. Any suggestion welcome!

All Comments (5)

avatar
David Grandolfo

Hello,

We have the SSH Port Foward (Entry Types > Sessions > Remote Connections > SSH Port Forward) which allows you to create a single entry that opens multiple port forwards. But we are also working on the SSH Tunnel with Dynamic port.

Regrettably, the Support Department cannot provide an exact release date as the full process (Build – Quality Assurance – Release) is out of our control.

Best regards,

David Grandolfo

avatar
Neonsun

Hello,

I noticed during the upgrade that the latest beta includes the new dynamic SSH tunnel option, very nice! Do you have some information on how to set up the tunnel and any RDP connection to forward the hostname properly? If I set the 'Computer' value to the target system, it tries to connect directly to that machine using the dynamic port, but if I set it to localhost, how can I pass the target system name/IP to the tunnel? :)

avatar
David Grandolfo

Hello,

Correct, we implanted SSH Dynamic Port in SSH Tunnel and SSH Port Foward entries. But you could presently use Dynamic proxy with local web browser only. In a short future, we will support the Web Browser entry in RDM with Dynamic Proxy. We do not have yet a delay when we will be able to pass the Dynamic Proxy for RDP connection.

Presently they have no way to pass the Dynamic Proxy to RDP session except by using a third-party application, so we are planning the way we will do it.

Best regards,

David Grandolfo

avatar
Neonsun

Hello, is there any update to plans on adding support for dynamic SSH ports for RDP sessions?

avatar
Hubert Mireault

Hello,

The feature is still on our todo list, since we think it would be useful for many of our clients. Unfortunately though, we use the Microsoft RDP ActiveX for our RDP entries which doesn't support SOCKS proxies (dynamic tunneling). We might have an idea on how to work around this issue but we can't give you an estimate on when we'll be working on it.

Regards,

Hubert Mireault