Accessing the OnBoard and Connected Devices > Creating an SSH Tunnel

Creating an SSH Tunnel
An authorized user can access a native web application after creating an SSH tunnel using local port forwarding. An arbitrarily chosen TCP port number on the user’s host is forwarded to the IP address of a device managed by the OnBoard.
Prerequisites are as follows:
The authentication type configured for the device is the same as the authentication method configured for the OnBoard.
After the user created the SSH tunnel, the user is authenticated, and then the user can launch a browser that runs the native web application on the device.
The following list shows some SSH clients that can be used to create a SSH tunnel. The feature works with SSH protocol v1 and v1. For additional clients, see http://www.openssh.com
Common port numbers are:
Our examples use port 443 for HTTPS.
To Use OpenSSH on Linux to Create an SSH Tunnel
Perform this procedure on a computer running Linux with OpenSSH installed to create an SSH tunnel to a device managed by the OnBoard. The command lines shown in this procedure forwards local TCP port 8080 on the SSH client to port 443 on the device whose IP address is 10.10.1.181. The final argument can be either the OnBoard’s DNS name or its IP address. The OnBoard name used in the example is onboard.yahoo.com.
1.
2.
3.
To Use PuTTY on a Windows PC to Create an SSH Tunnel
Perform this procedure on a computer with the PuTTY SSH client installed to create an SSH tunnel to a device managed by the OnBoard. The example forwards local TCP port 8080 on the SSH client to port 443 on the device whose IP address is 10.10.1.181. The final argument can be either the OnBoard’s DNS name or its IP address. The OnBoard name used in the example is onboard.yahoo.com.
1.
2.
3.
a.
This example uses 8080. You can select a random number over 1000.
b.
Type the IP of the device followed by a colon followed by the port number of the service you want to access through the SSH tunnel.
c.
The PuTTY window should look like the example below.
4.
5.
This example uses “onboard.yahoo.com.”
6.
7.
8.
To Bring Up a Native Web Application When an SSH Tunnel Exists
Do this procedure to bring up a native web application from a connected device after creating an SSH tunnel from your host to the OnBoard, as shown in the two examples:
See To Access a Native Web Application When a VPN Tunnel Exists when a VPN tunnel exists.
In this procedure, use the local port number you specified for forwarding. In the examples, we used 8080.
1.
2.
In the location bar enter http://localhost:portnumber.
portnumber is the TCP port number you specified for forwarding when you created the tunnel.
3.

Accessing the OnBoard and Connected Devices > Creating an SSH Tunnel