We have three networks which for simplicity I'll call NetA, NetB, and NetC. There are router connections between NetA and NetB and between NetB and NetC, but not directly from NetA to NetC. On each of these is a host (HostA, HostB, HostC) running TCP/IP Services V5.4 or later, with SSH enable.
I've just figured out how to use SSH to tunnel Telnet between HostA and HostC through HostB.
Every time I want to do this, though, I have to first log in to HostB using a command like
(1) HostA$ ssh HostB -"L" 20023:HostC:23
to establish the tunnel. Then I can do
(2) HostA$ ssh localhost 20023
to log in to HostC from HostA.
Ideally I'd like for anyone on NetA to be able to telnet to HostC via an ssh tunnel through HostB. This is a small user community, only about 5-10 people, each with his own Alpha VMS workstation on NetA; both HostB and HostC are rx1620's with lots of extra resources, so I'm not terribly concerned about load on either of these.
Is there some way a more permanent tunnel can be established, or that (1) can be automated so the user doesn't have to issue this command manually every time he logs in? Having to enter a password for HostB complicates this.
Another issue that's peripherally related is how to get the best performance out of limited bandwidth. The links to NetB from both NetA and NetC run over quite slow connections, on the order of 56Kb/sec each. This of course makes for some noticeable pauses in I/O when you have to traverse both links to get from NetA to NetC.
The best solution, of course, would be a direct connection between NetA and NetC, or minus that possibility, a much higher speed over the existing links. Doing either involves politics between us and our USGov customers that is so far removed from me that the folks involved have no idea of the existence of such a lowly and rare creature as our single project's VMS system manager.
I'd like to hear any help or commentary on either of these areas.
Thanks,
Galen
