Port forwarding

admin's picture

Opening ports on a web server is risky. Every port increases the threat surface and while many if not most of the services that run on these ports are frequently refreshed to keep them secure, they are vulnerable to a potential attack. Devopera machines try to minimise the number of open ports, but that does not mean you're in any way restricted in the kind of connections you can make to services on your machine.

SSH can be configured to tunnel access to a specific insecure port (say 10000) over a secure one, like 22. This means that while a production web server may only give access to 80 (HTTP), 443 (HTTPS) and 22/15022 (SSH), other ports can be reached using an SSH tunnel. There are some excellent instructions on setting up Putty here or here.

Recent Articles

published 3 years 1 month ago


Follow Us

Twitter icon
Facebook icon
LinkedIn icon
SlideShare icon
YouTube icon
RSS icon