I stumbled upon something interesting today, it should have been obvious but still I found it to be quite a surprise. First, a bit of background. I have a friend that lives on the coast almost four hours away. For years I've administered her simple network remotely mainly via the single open port to the Internet (ssh). All device on the network, aside from the PCs she insists to use, could be managed via ssh or http. For the http hosts I've kept a Squid http proxy running and I'd connect to those devices via a ssh tunnel using port forwarding and for years this setup was "good enough". Plus it gave me a remote host on the Internet were I could redirect my http traffic should I be so inclined. There are drawbacks to this setup, first and foremost my DNS queries would be resolved on my local network and the http traffic would travel over the tunnel thus bypassing any http proxies, but the evidence of my trespass was still evident in the DNS queries. Granted this wasn't a problem as I was never going places I really shouldn't have been in the first place so it wasn't ever a concern.
The old command I used to use to connect to my Squid proxy was: http greg@myserver.remotenetwork.com -8080:127.0.0.1:8080. After the tunnel was set up I'd go into Firefox and set up the proxies under Network Settings to use 127.0.0.1 as the proxy IP address and 8080 as the remote host.
Flash forward to last week. The remote ssh host in question is an iMac desktop and during a recent trip I upgraded the iMac to Snow Leopard. This caused a few applications to seize, most notably Squidman, my old trusty http proxy. I left the beach without installing a new Snow Leopard friendly proxy. Whoops. I just wrote it down on the to-do list next time I needed a salt air fix, and being a business at the beach this is certainly what we can define as the "slow time" of the year and I wouldn't likely have a need to connect to any http hosts between trips in the first place.
It's true that I am an old network dog but I occasionally learn a new (old) trick and I did that this week. A discussion started over e-mail about proxies and what-not someone suggested using a SOCKS proxy which would do two things: resolve DNS on the ssh host, not the local network and redirect http/https traffic (among other cool things). I tried it out using the following command:
ssh greg@myserver.remotenetwork.com -D 8888
From there I set *ONLY* the Socks proxy in my Firefox network settings to 127.0.0.1 and port 8888 and, as if magic with no configuration of extra software on the iMac my http requests were redirected over my tunnel just like when I used to use Squid. Cool!
But here's where things got interesting. Because my DNS queries were also being redirected I could resolve addresses for IPv6 hosts, such as ipv6.google.com and m0n0.ch. Cooler yet was even though my machine was on an IPv4 only network I could reach IPv6 webpages via http. This was very cool indeed. Had I thought about this prior to today it should have been obvious this would have worked but it still surprised me and I'm happy to have the IPv6 connectivity and I just think it's cool that I can tunnel requests for IPv6 hosts when my laptop is on a network that only supports IPv4.
Give it a shot, it works pretty well.
Thursday, January 28, 2010
Friday, January 1, 2010
Outer Banks indeed
I'm back on the Outer Banks once again and I'm loving it. I've been here for a few days and I'll be leaving tomorrow most likely. I love it out here. Great place. Greater people. Yes, the winter in Rodanthe is kind of "dead" with the population of year-round residents plummeting to near zero and only a handful of businesses open, one of which is the local gas station. Still there are few places on the globe I'd rather be during my down time.
But it's the new year so let's talk about that. First, goodbye and good riddance to 2009. This year saw the unraveling of my 13 year marriage and forthcoming divorce and I can't be happier that this year is going to be behind me for good. Kelly and I remain close friends and that's the single bright spot in that whole debacle. But it's not something I want to ever go through again. Oh, and there was also a banking meltdown, massive layoffs across multiple industries, the death's of my friend's parents (both in a car accident at the same time).. there was much to hate about 2009 and I do despise that year with a true passion.
2010, I hope, is a better year. It's starting rather well, I have to admit. I'm back at the beach and I brought in the new year with my good friends Jeanette and Pauly, both local residents. Pauly's family has a long fishing history in Wanchese, NC, well all over the Eastern US actually. I was going to stay in a local rental unit, a small but comfortable one, but a problem surfaced on the way down at Kelly's condo so I stayed here to sort things out so she didn't have to come down. That's what I call a win-win for each of us! Kelly's condo is much more comfortable, roomy and it has all the comforts of home. You also can't beat the view. It's fantastic.
I'll get back to work in a couple days and I feel invigorated. I'm ready for the challenge and I'm looking forward to getting back in school once again. I'm also thinking about moving next year. The company offered me a position in Philadelphia and I was very tempted after visiting the historic city but I think I'll stay here, in North Carolina. Friends also offered to rent me a place in Maryland but I don't know if I could make that work, professionally at least. I'll probably stay in or around Durham and I'd like to get a small house where I can once again share my down time with a dog. I miss my dogs terribly and I think they miss me too.
Well that's it for 2009 and the into to 2010. I can't believe this year is here! 2010! Holy cow. Life is flying by me and I've been a numb zombie for nearly the past year. I think it's time to return to the land of the living.
But it's the new year so let's talk about that. First, goodbye and good riddance to 2009. This year saw the unraveling of my 13 year marriage and forthcoming divorce and I can't be happier that this year is going to be behind me for good. Kelly and I remain close friends and that's the single bright spot in that whole debacle. But it's not something I want to ever go through again. Oh, and there was also a banking meltdown, massive layoffs across multiple industries, the death's of my friend's parents (both in a car accident at the same time).. there was much to hate about 2009 and I do despise that year with a true passion.
2010, I hope, is a better year. It's starting rather well, I have to admit. I'm back at the beach and I brought in the new year with my good friends Jeanette and Pauly, both local residents. Pauly's family has a long fishing history in Wanchese, NC, well all over the Eastern US actually. I was going to stay in a local rental unit, a small but comfortable one, but a problem surfaced on the way down at Kelly's condo so I stayed here to sort things out so she didn't have to come down. That's what I call a win-win for each of us! Kelly's condo is much more comfortable, roomy and it has all the comforts of home. You also can't beat the view. It's fantastic.
I'll get back to work in a couple days and I feel invigorated. I'm ready for the challenge and I'm looking forward to getting back in school once again. I'm also thinking about moving next year. The company offered me a position in Philadelphia and I was very tempted after visiting the historic city but I think I'll stay here, in North Carolina. Friends also offered to rent me a place in Maryland but I don't know if I could make that work, professionally at least. I'll probably stay in or around Durham and I'd like to get a small house where I can once again share my down time with a dog. I miss my dogs terribly and I think they miss me too.
Well that's it for 2009 and the into to 2010. I can't believe this year is here! 2010! Holy cow. Life is flying by me and I've been a numb zombie for nearly the past year. I think it's time to return to the land of the living.
Subscribe to:
Posts (Atom)
