EGOPOLY

Topics include: programming, Apple, Unix, gadgets, large-scale web sites and other nerdy stuff.

How to use an SSH tunnel chain to access a splunk server behind a double firewall.

2006-08-28 16:18:29

If you have a server environment that is behind a "jump box," and you have some network services you want to access, you can use SSH tunneling to get to it. In this example, I have a splunk server inside the inner firewall, a jump server in the DMZ (but behind the outer firewall). To access my splunk web UI, I do this:

ssh -t -L 8000:localhost:8000 jumpbox.example.com 'ssh -L 8000:splunk.inside.example.com:8000 splunk01'

This forwards access to http://localhost:8000/ through the chain to my splunk server.