[wplug] Tunneling X across multiple SSH hops?
Patrick Wagstrom
pwagstro at andrew.cmu.edu
Thu Apr 21 13:39:11 EDT 2005
On Thu, 2005-04-21 at 13:13 -0400, Vanco, Don wrote:
> This is what I expected to work - but it does not:
> first hop (via SSH):
> login as: vancod
> Sent username "vancod"
> vancod at 206.132.103.194's password:
> Last login: Tue Apr 22 13:17:02 2003 from psefw-web.agilysys.com
>
> Second hop:
> [vancod at claw vancod]$ ssh root at 10.10.10.113
> root at 10.10.10.113's password:
> Last login: Thu Apr 21 12:54:38 2005 from 10.10.10.200
> [root at titan root]# xclock
> Error: Can't open display:
>
> All of the SSH config files are set to forward X.
>
> One key thing I forgot to mention - the firewall...
> I am guessing that because I access server one _through_ a
> Microsoft ISA <ahem> firewall that the relevant port data is not passing
> through. As these are not Internet routable I have to go via gateway
> devices...
I'm pretty sure your gateway device needs to have the capability for X
forwarding installed. You can check and see where it's messing up by
looking at $DISPLAY each set of the way. Is should be set as something
like localhost:10.0 (or something like that). It's not a port issue as
the X data gets sent back over the same SSH connection, no additional
ports are needed.
I run into the same problem with some of my machines behind a firewall,
just sorta decided to suck it up.
--Patrick
More information about the wplug
mailing list