are there someone experienced a need to apply SSH2 between 9500 Comm Server (HW or SW) and the customer host/application???
We know 9500 doesn't have SSH2 and we need to add this secured level of connection on the wired side of customer network.
I'm trying to search on internet an existing kind of this tool, but it is not so easy.
I do thank you to all of you that can help us!!!!
Your username and password you use to log onto the PC should work
If you have an urgent issue please contact your Regional Technical Support Help Desk
Americas - Asia Pacific - EMEA
An alternate solution is the Naurtech Client. It does SSH2.
Below is a link the PDF file that explains more
Regards,Lawrence - AHD
Welcome to the forum.
Do you mean port forwarding a TCP port over an SSH2 connection like this article describes?
Would it be one port they need to forward or many for example are they using a 9010 host or 5250/ansi telnet?
Unfortunately I have no experience doing this and if you did get it to work it may not be supportable by us as it would introduce unknown variables into the connection.
As Lawrence noted you could use Naurtech without a controller.
Another option is to use Staylinked which supports encryption and can also be installed on the host system.
I think more or less you catch the point.
Considering the network scheme in the articol your indicated, let's imaging to have the 9500 Comm Server on the left side and the host/application customer server on the right side.
What is not clear to me is how to address 9500 Telnet TCP traffic through an SSH2 client that makes the tunnel with the SSH2 Server.
My customer in this case has an ANsi VT220 application that support SSH2.
I cannot consider to use other clients (like OTT or Nautech) because the customer needs and wants the 9500 architecture features. They use it for many years and they want to continue to use it....that's the main problem!
Thanks in advance for further comments
A tunneling application on the 9500 controller that can forward ports would have to be used.
Below is an example using Putty
9500 Ansi host would point to local host 127.0.0.1 port that Putty is listening on which then forwards to the host ip
This is of course theory as I have not done this.
Had a go at it myself and have it working using Putty SSH tunneling on the 9500 using the steps below. There may be other ways but this worked for me.
Essentially once the SSH user is logged in a secure tunnel can be created to forward port from local PC and have them created from the SSH host server
1. Expand Connection and SSH Select Tunnels
2. Enter Source Port as 23 (this is the local listen port , and we will configure the Commserver to telnet to localhost 127.0.0.1 port 23)
3. Enter the Destination as 127.0.0.1:23 (This is IP/port destination on the other end which is the Host / SSH Server localhost where the apps telnet server is running
4. Click Add (L23 127.0.0.1:23 will appear in the forwarded ports window)
5. Under 'Connection 'select ' Data' and type the SSH account user name in the 'Auto-login username' field
6. Expand 'Session' and type the Host Name and port (This is the SSH server/ Host)
7. In 'Saved Sessions' Type 'Tunnel' and click Save
8. To test Click Open and login with ssh username/password
9. Configured the Commservers Ansi host to auto telnet to local host 127.0.0.1
10. Created Shortcut of Putty.exe in startup folder
11. Edited the shortcut to load the saved session and enter the password ie "C:\putty.exe" -load tunnel -pw Mypassword
Rebooted server and verified putty started and the terminal connected
As I have not tested you may need to Enable TCP keepalives and save it to the tunnel profile.
We also do not know how many sessions and how much data it can reliably handle
first of all, All My Best Wishes for you and your family for a Great 2011.
Then I have to thank you for all the instruction you gave me.
I follow them, but actually I'm not able to test any settings because I don't have an SSH2 Host to use as a test environment.
Do you know if there's some where in our intranet an SSH2 Host to connect to?
Many thanks again
Thanks, Best wishes for you and your family as well.
The host I used to test was KTM ( www.kpym.com). Once installed,log in via SSH using the PC's winnt username and password.
Other SHH servers are listed in their FAQ such as http://www.freesshd.com
really thank you!
I have now the login and password prompt of the KPYM host.
Sorry, but it's not clear to me which username and which password i have to use to connect this host.
Ok, I'm using my user and password normaly used when I turn on my PC (which is the same used to login our domain)...but no way to get access.
is there a standard or a default login and password?
There is no default it requires an NTUSER account
From the KPYM FAQ
"KTS does not display a domain prompt. Instead use a UPN( user principal name ) login name.
The format is: someone@my_domain (as for an e-mail address)."
If you want to setup users on demand Freesshd allows you to do that. Note that tunneling is not enabled by default with this app.
Hope this helps