Ssh – How to connect to MySQL when it’s setting behind 2 layers of ssh

MySQLport-forwardingssh

I have a MySQL server sitting behind a bastion server that I wish to connect to from my local machine.

Ideally I want to port-forward the MySQL port (3316 in this case) to a local port on my machine.

I've tried plink -ssh -L 3306:my.sql.ip.address:3316 my.bastion.server
,but this is not working.

I've got one ssh login for the bastion server and another login for the machine mysql server is running on.

Best Answer

You can double-chain SSH port forwards, bit a slightly easier method is to set up a "proxy" config in .ssh/config:

Host *%proxy
    ProxyCommand ssh proxy-user@proxy.host "nc -w1 $(echo %h | cut -d%% -f1) 22"
    ForwardAgent yes
    StrictHostKeyChecking no

Then use ssh -L 3306:127.0.0.1:3316 final-user@final.host%proxy to bring up the seesion.

I use this all the time, although normally with dyanamic port forwards (-D 1080) to get to management modules of hosts behind overly restrictive firewalls.

Related Solutions

Ssh – Forwarding port 3306 on Mac OS X in order to connect to a remote MySQL Database

This should work:

ssh -L 3310:127.0.0.1:3306 user@server

The first port number is the local port to use (must not be in use already), the IP in between the colons is the IP to connect to, from the perspective of the host you are sshing into. The second port number is the port to connect to. If you are connecting to a server other than the one you are sshing into, then try the following:

ssh -L 3310:<remote-IP>:3306 user@server

Usually, when I want to do this more than one time, I create an entry in ~/.ssh/config like the following where sshhost.example.com is the server I am sshing to, the local port I want to open is 5910, the IP on the other side I want to connect to is 192.168.35.69, and the port I want to connect to there is 5900:

Host desk
    Hostname sshhost.example.com
    User jed
    Port 22
    LocalForward 5910 192.168.35.69:5900

Then from a command prompt I can just do

jed@jed-mbp:~$ ssh desk

and get a tunnel to my desktop at the office.

Good luck,

--jed

Ssh – Connect to remote MySQL using proxy

Use PuTTY's port forwarding to forward local port 3306 to port 3306 of machine C, connecting to machine B. If using the command line ssh use:

ssh -L 3306:machineC:3306 username@machineB

then connect to MySQL via localhost:3306.

Best Answer

Related Solutions

Ssh – Forwarding port 3306 on Mac OS X in order to connect to a remote MySQL Database

Ssh – Connect to remote MySQL using proxy

Related Topic