Terminal Server (TSE) connexion through SSH

Usually, when I want to connect to my LAN from the Wild Wild World, I use a VPN connexion. But there are times when it is not possible ; especially now that my work LAN has the same IP range as my home LAN… An alternate way to access my unpublished home services from outside is to use SSH tunnels.

What you need is an SSH server on the LAN that you want connect to. The SSH server has to be able to connect to the LAN server you aim to connect to. Then, all you have to do is a bit of “Port Forwarding”.

Continue reading “Terminal Server (TSE) connexion through SSH”

Using SSH keys to connect to ESXi

In VMware ESXi 5, SSH is enabled through the “Configuration / Security Profile / Services” section. When you connect using the root user, you have to specify the root password. If you want to use SSH keys, the only thing you have to do is copy them, over ssh, to a dedicated directory:

# cd ~/.ssh # scp id_rsa.pub authorized_keys root@esxi:/etc/ssh/keys-root/

You can now connect to the ESXi using your SSH keys (and the `ssh-agent`). So simple!

Source: SSH Keys & Lockdown Mode Caveat in ESXi 5

Bigger SSH keys

No secrets here, just quick notes on how to generate bigger (safer ?) SSH keys.

Server keys generation:

# /usr/bin/ssh-keygen -t rsa1 -f ssh_host_key -N '' -C "tumfatig.local" -b 4096
# /usr/bin/ssh-keygen -t dsa -f ssh_host_dsa_key -N '' -C "tumfatig.local" -b 1024
# /usr/bin/ssh-keygen -t rsa -f ssh_host_rsa_key -N '' -C "tumfatig.local" -b 4096

Personal key generation:

# ssh-keygen -t rsa -C "ptijo@tumfatig.net" -b 4096

This should strengthen the key exchange phase in the cost of more intensive CPU usage during this phase.

Source:

  • How do I generate an RSA key?
  • How To Generate SSH Keys (…)