Escolar Documentos
Profissional Documentos
Cultura Documentos
Setup SSH on Your Router for Secure Web Access from Anywhere
How-To Geek
Setup SSH on Your Router for Secure Web Access from Anywhere
Connecting to the internet from Wi-Fi hotspots, at work, or anywhere else away from home, exposes your data to unnecessary risks. You can easily configure your router to support a secure tunnel and shield your remote browser trafficread on to see how.
www.howtogeek.com/68061/setup-ssh-on-your-router-for-secure-web-access-from-anywhere/
1/5
4/29/13
Setup SSH on Your Router for Secure Web Access from Anywhere
There are many ways to setup an SSH tunnel to secure your web browsing. For this tutorial were focusing on setting up an SSH tunnel in the easiest possible way with the least amount of fuss for a user with a home router and Windows-based machines. To follow along with our tutorial youll need the following things: A router running the Tomato or DD-WRT modified firmware. An SSH client like PuTTY. A SOCKS-compatible web browser like Firefox. For our guide well be using Tomato but the instructions are almost identical to the ones you would follow for DD-WRT so if youre running DD-WRT feel free to follow along. If you dont have modified firmware on your router check out our guide to installing DDWRT and Tomato before proceeding.
a strong password:
Once youve plugged in a password, go ahead and click Save private key. Stash the resulting .PPK file somewhere safe. Copy and paste the contents of the Public key for pasting box into a temporary TXT document for now. If you plan on using multiple devices with your SSH server (such as a laptop, a netbook, and a smartphone) you need to generate key pairs for each device. Go ahead and generate, password, and save the additional key pairs you need now. Make sure you copy and paste each new public key into your temporary document.
www.howtogeek.com/68061/setup-ssh-on-your-router-for-secure-web-access-from-anywhere/
2/5
4/29/13
Setup SSH on Your Router for Secure Web Access from Anywhere
Administration >SSH Daemon. There you need to check both Enable at Startup and Remote Access. You can change the remote port if you desire but the only benefit to doing so is that it marginally obfuscates the reason the port is open if anyone port scans you. Uncheck Allow Password Login. We will not be using a password login to access the router from afar, we will be using a key pair. Paste the public key(s) you generated in the last part of the tutorial into the Authorized Keys box. Each key should be its own entry separated by a line break. The first portion of the key sshrsa is very important. If you do not
include it with each public key they will appear invalid to the SSH server.
Click Start Now and then scroll down to the bottom of the interface and click Save. At this point your SSH server is up and running.
At the terminal you will only need to do two things. At the login prompt type root. At the passphrase prompt enter your RSA keyring passwordthis is the password you created a few minutes ago when you generated your key and not your routers password. The router shell will load and youre done at the command prompt. Youve formed a secure connection between PuTTY
www.howtogeek.com/68061/setup-ssh-on-your-router-for-secure-web-access-from-anywhere/
3/5
4/29/13
Setup SSH on Your Router for Secure Web Access from Anywhere
and your home router. Now we need to instruct your applications how to access PuTTY. Note: If you want to simplify the process at the price of slightly decreasing your security you can generate a keypair without a password and set PuTTY to login to the root account automatically (you can toggle this setting under Connect > Data > Auto Login). This reduces the PuTTY connection process to simply opening the app, loading the profile, and clicking Open.
www.howtogeek.com/68061/setup-ssh-on-your-router-for-secure-web-access-from-anywhere/
4/5
4/29/13
Setup SSH on Your Router for Secure Web Access from Anywhere
FoxyProxy has you covered. Chrome Users will want to check out Proxy Switchy! for similar functionality. Lets see if everything worked as planned, shall we? To test things out we opened up two browsers: Chrome (seen on the left) with no tunnel and Firefox (seen on the right) freshly configured to use the tunnel. On the left we see the IP address of the Wi-Fi node were connecting to and on the right, courtesy of our SSH tunnel, we see the IP address of our distant router. All Firefox traffic is being routed through the SSH server. Success!
Have a tip or trick for securing remote traffic? Use a SOCKS server/SSH with a particular app and love it? Need help figuring out how to encrypt your traffic? Lets hear about it in the comments.
RECOMMENDED POSTS
The How-To Geek Guide to Buying an HDTV Make Your Own Windows 8 Start Button with Zero Memory Usage The Best 8 New Features in Android 4.1 Jelly Bean Geek School: Learning Windows 7 Managing Applications Stupid Geek Tricks: How to Play Tetris in uTorrent What You Said: The Best Sources for Awesome Wallpapers
www.howtogeek.com/68061/setup-ssh-on-your-router-for-secure-web-access-from-anywhere/
5/5