Protocol Encapsulation

Sam Couter sam at
Sun Aug 5 16:38:42 EST 2001

Mark Hummel <mhummel at> wrote:
> For example, consider telnet. I don't simply want to add the service in
> inetd.conf - I want to force users to go via ssh. Ssh port forwarding
> doesn't seem to do the trick, because the port I forward to has to be
> open,  does it not? 
> And, if the port has to be open, users can connect to the port directly. 
> Any advice? 

I think you need to give a little more detail about exactly what you're
trying to do. Start with things like where you think each end of the
encapsulation should be relative to where your server is and where your
clients are.

If you just want to force people to use ssh instead of telnet, then just
disable telnet and enable ssh.
Sam Couter          |   Internet Engineer   |
sam at    |   tSA Consulting      |
OpenPGP key ID:       DE89C75C,  available on key servers
OpenPGP fingerprint:  A46B 9BB5 3148 7BEA 1F05  5BD5 8530 03AE DE89 C75C
-------------- next part --------------
A non-text attachment was scrubbed...
Name: not available
Type: application/pgp-signature
Size: 232 bytes
Desc: not available
Url :

More information about the linux mailing list