Encrypted File Transfer - HP NonStop SSH 544701-014 Reference Manual

In this example the local telnet client connects through the tunnel to the telnet server on remote host 10.0.0.111 that
listens on loopback address 127.0.0.1, port 23.
Forwarding Remote Port to Local Port
Port forwarding channels can also be enabled in the opposite direction, i.e. from a remote port to a local port. The
following example illustrates how to establish an SSH port forwarding tunnel from a remote host to the local host, using
the Guardian SSH client:
$US SSH90A 48> run ssh -N -R 5021:localhost:23 testusr@10.0.0.234
SSH client version T9999H06_08Jun2011_comForte_SSH_0090
The –N option suppresses the start of a remote shell. The –R option tells the remote SSH daemon on host 10.0.0.234 to
listen on port 5021 and forward any incoming connection on that port to the local SSH2 process and this local process
will further forward to a telnet server on the local host, listening on loopback address, port 23. The "localhost" in the
command line refers to the target host of the forwarding tunnel, i.e. when using -R option this is the local host.
After the SSH session is successfully established, the SSH process will wait until the SSH session is terminated or it is
stopped.
On the remote host 10.0.0.234 you can establish a telnet session over the SSH tunnel as follows:
testusr@linux-dev:~$ telnet 127.0.0.1 5021
TELNET Client - T9558G06 - (11JUL03) - (IPMAAE)
Copyright Tandem Computers Incorporated 1992-1997
Trying...Connected to 127.0.0.1.
Escape character is '^]'.
WELCOME TO npns01 [PORT $ZTC1 #23 WINDOW $ZTN0.#PTYSYNS]
TELSERV - T9553H01 - (25SEP2009) - (IPMAEP)
Available Services:
OSS TACL
Enter Choice>
In this example the remote telnet client started on host 10.0.0.234 connects through the tunnel to the telnet server on the
local host that listens on loopback address 127.0.0.1, port 23.

Encrypted File Transfer

You can implement encrypted file transfers over SSH in various ways:
•
Use the SFTP or SFTPOSS clients to initiate and control SFTP sessions from the NonStop server
•
Use an SFTP client on a remote system to initiate and control SFTP sessions to the NonStop server from a
remote system.
•
Forward FTP connections over an SSH session.
To Connect a Remote SFTP Client to the NonStop Server
You can connect with an SFTP client on a remote system to SSH2 listening on the NonStop server as follows:
m.horst@np-dev02:~> sftp comf.mh@10.0.0.199
Connecting to 10.0.0.199...
comf.mh@10.0.0.199's password:
sftp> dir
a1000 auditlog
emsacstm ftps
secret sftpserv
t1000000 t10mio
testbin4 trace2
HP NonStop SSH Reference Manual
EXIT
bashhist bench
fupcstm osstest
shhistor ssh
taclcstm test
tracecap z1000000
benchcpu benchs2k benchs3k
osstzip rand1mio rs120157
stna48 t1000 t10000
test101 testbin testbin2
z1mio z1mio2 z1mio3
cryptand
scfcstm
t100000
testbin3
z1mioftp
Installation & Quick Start • 41