RSYNC unidirectional connection

Matt McCutchen hashproduct at gmail.com
Tue May 16 20:33:52 GMT 2006


On Tue, 2006-05-16 at 15:31 +0200, philippe.zenhaeusern at ubs.com wrote:
> One server is in the intranet zone and the other in the
> internet zone. The challenge in this exercise is, that a connection
> could only be established from the intranet server to the internet
> server, but not in the other direction. Connections from the internet
> server to the intranet server will be blocked by the firewall.

If you start rsync on the intranet server, you can send files in either
direction, as Wayne said.

If for some reason you need to start rsync on the internet server (e.g.,
the internet server automatically backs up the intranet one with
rsnapshot), have the intranet server log into the internet server with
SSH, forwarding a port on the internet server to its own SSH port (-R
PP:localhost:22 where PP is a port of your choice).  Then have rsync on
the internet server access the intranet server via the forwarded SSH
port (--rsh="ssh -p PP" and give localhost instead of the intranet
server's hostname).  This is similar to method 3 on
http://rsync.samba.org/firewall.html .

Matt



More information about the rsync mailing list