Remote Port Forwarding
Remote Port Forwarding refers to the SSH tunneling approach where the SSH tunnel is created from
the client side of the tunnel towards the server side. The CPA machine is the server and the PDBA
machine is the client.
Figure 4: SSH Tunnel Between the CPA and PDBA Machines shows an SSH tunnel on a connection between
the Customer Provisioning machine and the PDBA machine.
Figure 4: SSH Tunnel Between the CPA and PDBA Machines
The PDBA machine user specifies a particular port number (configurable from GUI) to be opened on
the CPA machine. Any data received on this port on the CPA machine is forwarded to the PDBA
machine's IP address and the port number, 5873, through the secured SSH tunnel.
Note: To implement Remote Port Forwarding to work, the CPA machine must have the OpenSSH
suite (version 3.6.1 or later) installed and the SSH daemon must be running.
Request/Response Cycle in SSH Tunnel
When an SSH tunnel is in use, a complete request and response cycle takes place as follows:
1.
The CPA sends a connect request to its local port number used for creating the tunnel.
2.
The SSH encrypts the request message and sends it to the PDBA machine's SSH client port.
3.
On the PDBA machine, the SSH client decrypts the message and forwards it to the PDBA port.
26
910-6022-001 Revision A, March 2011
Functional DescriptionProvisioning Database Interface Manual
To Next Page
Loading...
