On 04/10/2012 20:38, Keith Edmunds wrote:
On Thu, 4 Oct 2012 10:44:57 +0100, cl@isbd.net said:
I don't want it to provide any sort of access from outside, I just want to be able to reverse tunnel down the connection to access port 80 on the system on the boat.
In my opinion, you are making life unnecessarily complicated for yourself. The easy way to do this is to set up a VPN (OpenVPN is reasonably straightforward) from the boat to wherever you want, using multiple VPN connections if necessary. Then you can firewall incoming connections over the VPN to allow access from only those places you specify.
That would be a lot more secure, and, once set up, somewhat easier to manage.
I entirely agree. The combination of Shorewall and OpenVPN is pretty hard to beat, IMO.
Also, assuming your web pages aren't too heavy on graphics, how about using links in an SSH session direct to localhost?
Cheers, Laurie.