Reverse SSH Tunneling (NAT)

Home / Hacking, News, Security / Reverse SSH Tunneling (NAT)

January 7, 2010 PlanetCreator 0 Comments 0 tags

Have you ever wanted to ssh to your Linux box that sits behind NAT? Now you can with reverse SSH tunneling. This document will show you step by step how to set up reverse SSH tunneling. The reverse SSH tunneling should work fine with Unix like systems.

Let’s assume that Destination’s IP is 192.168.20.55 (Linux box that you want to access).

You want to access from Linux client with IP 138.47.99.99.

Destination (192.168.20.55) <- |NAT| <- Source (138.47.99.99)
1. SSH from the destination to the source (with public ip) using command below:

ssh -R 19999:localhost:22 [email protected]

* port 19999 can be any unused port.

2. Now you can SSH from source to destination through SSH tuneling:

ssh localhost -p 19999

3. 3rd party servers can also access 192.168.20.55 through Destination (138.47.99.99).
Destination (192.168.20.55) <- |NAT| <- Source (138.47.99.99) <- Bob’s server

3.1 From Bob’s server:

ssh [email protected]

3.2 After the sucessful login to Source:

ssh localhost -p 19999

* the connection between destination and source must be alive at all time.

Tip: you may run a command (e.g. watch, top) on Destination to keep the connection active.

Explore More

Torrent Poisoning

=== Introduction === The BitTorrent protocol identifies peers using a tracker. Each peer announces itself to the tracker via HTTP. Certain parameters in the announce request itself can be altered

Press Conference briefing on the possibility of being shortest man in the world!!!

This is not hacking or security news, just about my some favorite news while I’m arriving at yangon, myanmar. I’ve been here around 3 months and waiting visa approval to

Critical Blind SQL Injection (vulnerability) in The Best Myanmar Website (burmeseclassic.com)

PlanetCreator has reported another critical Blind SQL Injection (vulnerability) on http://www.burmeseclassic.com/ This vulnerability has been alerted to :- Webmaster of BurmeseClassic Applications: â€”â€”â€”â€” PlanetCreatorâ€™s_Universal_Advanced_Internet_Security_T00L System Time: â€”â€”â€”â€” (UTC+08:00) Yangoon, Myanmar

[webapps] YAMCS yamcs-core 5.12.7 - LDAP Injection
on May 30, 2026 at 12:00 am
YAMCS yamcs-core 5.12.7 - LDAP Injection
[webapps] YAMCS yamcs-core 5.12.7 - No Rate Limiting
on May 30, 2026 at 12:00 am
YAMCS yamcs-core 5.12.7 - No Rate Limiting
[webapps] YAMCS yamcs-core 5.12.7 - User Enumeration
on May 30, 2026 at 12:00 am
YAMCS yamcs-core 5.12.7 - User Enumeration
[remote] Notepad++ 8.9.6 - Arbitrary Code Execution
on May 30, 2026 at 12:00 am
Notepad++ 8.9.6 - Arbitrary Code Execution
[remote] Wing FTP Server 8.1.3 - Authenticated Remote Code Execution
on May 29, 2026 at 12:00 am
Wing FTP Server 8.1.3 - Authenticated Remote Code Execution