Oct 18

GNU HTTPtunnel v3.3 Windows Binaries

SSH Stuff 18 Comments »
SSH Stuff If you cannot use a SSH client to bypass the firewall (403 error, connect command not allowed) you can use GNU httptunnel to bypass the firewall. I personally use httptunnel to bypass TRANSPARENT FIREWALLS.

As an example we forward again the Windows Remote Desktop (port 3389).

We use the same scenario as in the SSH 3 article:
There is a RemoteServer in a large company behind a Firewall. You own the MiddleServer, a public available SSH server. Last but not least there is your Workstation - you want to control the RemoteServer from this machine.

MiddleServer:
Start HTTPtunnel on MiddleServer, forward port 80 (incoming) to local SSH Port:
# hts --forward-port localhost:22 80

RemoteServer:
Start HTTPtunnel client, forward local port 900 to MiddleServer port 80 (make sure your Web Server is NOT running!):
# htc --forward-port 900 --proxy HTTPProxy:8080 MiddleServer:80

###############################################
News, 18.10.2006:
-----------------------
New w32 package available, change log:
-compiled with latest cygwin1.dll (v1.5.21)
-including latest cvs version
-included debug builds (for stable and cvs build)

Get it HERE

Get the old version: Download GNU httptunnel Windows binaries (v3.3).
###############################################


Lern HTTP yourself:



As GNU httptunnel traffic is not encrypted we create a SSH tunnel in our httptunnel tunnel...:
Again we use the same settings for our Putty sessin as in the SSH 3 article:

On the RemoteServer, start a SSH session to the MiddleServer. Change to the "Tunnels Tab" and enter the REMOTE forwarded port:

BUT the SSH server is of course localhost:900 (through the httptunnel).

Now start a session from your Workstation to the MiddleServer:



And now fire-up the Terminal Server Client (mstsc.exe):

Now you control the RemoteServer without change any firewall rules...

Its important that you can use only 1 httptunnel per port! Another Hint: the logging goes to the Windows application log!

IMPORTANT: httptunnel does NOT support NTLM proxy authentification!

Another example:
Server (Linux):
 # ./hts --no-daemon -D4 --forward-port localhost:22 80
Client (Windows):
 > htc --no-daemon -D4 -PPROXYSERVER:8080 -F 8888 YOUR-PUBLIC-SERVER:80


When you use debuglevel you migth see those keep-alive messages:

tunnel_write_request: TUNNEL_PAD1
tunnel_read_request: TUNNEL_PAD1
poll() timed out
tunnel_write_request: TUNNEL_PAD1
tunnel_read_request: TUNNEL_PAD1
poll() timed out
tunnel_write_request: TUNNEL_PAD1
tunnel_read_request: TUNNEL_PAD1
poll() timed out


After x seconds, the connection will close and re-establish itself:

tunnel_write_request: connection > 300 seconds old
tunnel_write_request: closing old connection
tunnel_out_disconnect: warning: bytes=4278 != content_length=102400
tunnel_out_disconnect: output disconnected
tunnel_out_setsockopts: non-fatal SO_SNDLOWAT error: Protocol not available
tunnel_out_setsockopts: non-fatal SO_SNDLOWAT: 0
tunnel_out_setsockopts: SO_LINGER: onoff=1 linger=2000
tunnel_out_setsockopts: non-fatal TCP_NODELAY: 1
tunnel_out_setsockopts: SO_KEEPALIVE: 1
http_write_request: POST
http://1.2.3.4:80/index.html?crap=1161192374 HTTP/1.1
tunnel_out_connect: output connected
tunnel_write_request: TUNNEL_PAD1

From the httport faq:
Q: When I use SSH (or VNC, or <insert other program here>) over GNU httptunnel, the program locks up after a few minutes (or hours). When I close the program and attempt to reconnect, SSH times out. What's wrong?
A: Your httptunnel connection has failed on the client end (possibly due to network congestion), but the server end has not recognized that the connection has been lost and won't allow another connection until the first connection times out. To establish a more stable tunnel, try experimenting with the various options for the htc and hts programs. The following settings seem to work pretty well for me, but your mileage may vary:

hts -S --max-connection-age 20000 -F localhost:22 8890

htc -F 8890 --strict-content-length -B 5k --max-connection-age 2000 -P proxy.mycompany.com:8080 10.1.1.1:8890


Links:
http://www.nocrew.org/software/httptunnel/faq.html (GNU httptunnel faq)
http://www.nocrew.org/software/httptunnel.html (GNU httptunnel home)
http://sebsauvage.net/punching/ (GNU httptunnel how-to)

 

Posted by michu

Defined tags for this entry: , ,
Related entries by tags:
iPhone, Jailbreak and lost images/contacts...
SSH: Prevent banner timeout
SSH Tunnel on iPhone
SSH Guide (German)
PingTunnel for Windows (ICMP tunnel)
PuTTY Private-Key cracker
SSH Private-Key cracker
SSH, Debian sarge and MySQL 5
CVS-SSH2 Server installation (debian)
Use Puttygen to generate a SSH keypair

0 Trackbacks

Trackback specific URI for this entry
  1. No Trackbacks

18 Comments

Display comments as(Linear | Threaded)
  1. locusok says:
    07/03/2006 08:04:29 AM

    haha thanks

  2. Thejipster says:
    09/12/2006 08:27:16 PM

    You need to set the HTTP keepalive option in Putty to keep an HTTP session going, otherwise you would loose the connection after a pre-defined timeout interval set by the proxy.

  3. Lorenzo says:
    10/11/2006 04:21:15 AM

    Don't know why, but it seems the version of cygwin that comes with the latest openssh does not work along with the one who comes with httptunnel.
    At beginning, i used httptunnel alone and it seemed to work. After that, I tried installing OpenSSH, and then httptunnel began complaining about it having an older version of cygwin1.dll.
    Following the on-screen suggestions, I've updated to the latest cygwin from cygwin.com and updated all the .dll to the latest rev..
    Now .. there's no way to make httptunnel to work: when I launch HTS, it just hangs.
    removing-Reinstalling cygwin does not solve the issue.
    Please, give me some advice, thanks!

  4. michu says:
    10/14/2006 01:55:50 PM

    you could use openssh and httptunnel in different directories, windows allways looks in the current directory for the dll.

  5. Lorenzo says:
    10/16/2006 02:45:09 AM

    I fixed the issue (installed on fresh machine) but...
    whenever I use SSH or openvpn (in tcp of course) HTC process dies.. any hint?
    (using the same cygwin1.dll that came with it)

  6. Michu says:
    10/16/2006 09:14:05 AM

    You could use filemon from sysinternals to check if you miss some files...

  7. Lorenzo says:
    10/18/2006 03:41:46 AM

    Hi
    I'm sure I'm not missing any file because the HTTPTunnel does actually work, as long as I don't use it for 'complex' traffic like SSH or OpenVPN.
    The process remains alive until I open Putty and connect to the localhost:forwardedport or openvpn (same), at wich point HTC simply disappears from the process list (and the tunnel closes of course..)
    Thanks!

  8. michu says:
    10/18/2006 09:11:33 AM

    I will release a debug build of htc, this should help to trace some issues

  9. Lorenzo says:
    10/22/2006 11:06:05 PM

    Thanks for the new build! I'll try it immediately and I'll let you know as soon as possibile.
    Again: thanks!

  10. Lorenzo says:
    11/19/2006 05:48:47 PM

    It seems I had just overlooked the fact that HTTPTunnel does not support NTLM authentication.. and this caused all of the problems.
    A shame, since most firewalls are ISA and they do require NTLM auth.. any chance of having it implemented?
    Thanks again!
    Lo.

  11. michu says:
    11/20/2006 10:34:06 AM

    You could try to use a NTLM proxy: http://apserver.sourceforge.net/ (old website: http://www.geocities.com/rozmanov/ntlm/). Good luck!

  12. raleks says:
    03/27/2009 01:25:47 PM

    http://slashstar.com/blogs/dave/archive/2006/11/27/SSH-Tunneling-2800_on-Windows_2900-with-OpenSSH-and-Putty-through-an-HTTP-proxy-.aspx

    Just find how to tunneling without HTTP proxy :-) Have fun! Thanks to Dave!!

  13. StarTroll says:
    05/14/2009 11:31:38 AM

    I'm trying to get through my company firewall. Until recently I could just use PuTTY to set-up a connection to my home sshd and everything was fine. But now the proxy's configuration has been changed. It seems that the proxy blocks the http_connect command. And it also uses NTLM authentication.

    So, I've installed CygWin on my WinXP work PC. In CygWin I've installed NTLMAPS, which creates a 'normal' HTTP proxy. NTLMAPS connects to the company proxy. This sort of transforms the NTLM proxy into a regular one. My plan was to use HTTPTunnel to connect to my home server (running hts) through the NTLMAPS proxy. This way, I can still use HTTPTunnel (which doesn't understand NTLM) to bypass the http_connect restriction.

    The NTLMAPS proxy works, I can have my Firefox connect through it and receive pages (although it's slower of course than directly through the company proxy).

    But, like Lorenzo, when I try to have ssh use the hts-htc tunnel, the htc client dies with any error message. Seeing the htc is connected to NTLMAPS, it shouldn't see the NTLM authentication at all, so I doubt Lorenzo's conclusion is correct, I fear that there is a different problem.

    Does anyone have an idea?

  14. Adam says:
    07/30/2009 03:49:10 PM

    Having similar problems trying to connect through an ISA proxy... any chance you could post a link to your Visual Studio project files & Windows source to allow us to debug more fully?

  15. michu says:
    07/31/2009 06:01:52 PM

    hey adam, there is no vs project file as this is a cygwin port. I guess you have some ntlm issues, you need to authenticate yourself on the isa proxy...

  16. h3liburton says:
    09/06/2009 02:43:36 PM

    How can I lunch my home server behind restricted firewall and router to Internet use by your HTTP tunnel without touch router and firewall.

  17. michu says:
    10/06/2009 11:00:18 PM

    ... lunch your homeserver?

  18. miser says:
    11/13/2009 03:08:05 AM

    I personal use super network tunnel, can find it at http://www.networktunnel.net, it's more easy.

Add Comment


Enclosing asterisks marks text as bold (*word*), underscore are made via _word_.
Standard emoticons like :-) and ;-) are converted to images.
E-Mail addresses will not be displayed and will only be used for E-Mail notifications

To prevent automated Bots from commentspamming, please enter the string you see in the image below in the appropriate input box. Your comment will only be submitted if the strings match. Please ensure that your browser supports and accepts cookies, or your comment cannot be verified correctly.
CAPTCHA