Settings in SSH Tectia Client

You can define static tunnels in the Connection Broker configuration file ssh-broker-config.xml with the static-tunnels XML element.

The following configuration example shows a connection profile with static tunnel settings:

<profile id="id1" user="user7" host="sshserver.example.com" />

<static-tunnels>
 <tunnel listen-port="25"
         dst-host="smtp.example.com"
         dst-port="25"
         allow-relay="no"
         type="TCP"
         profile="id1"/>
 <tunnel listen-port="143"
         dst-host="imap.example.com"
         dst-port="143"
         allow-relay="no"
         type="TCP"
         profile="id1"/>
</static-tunnels>

With the static-tunnels setting, you can create listeners for local tunnels automatically when the Connection Broker starts up. The actual tunnel is formed the first time a connection is made to the listener port. If the connection to the server is not open at that time, it will be opened automatically as well.

The static-tunnels element can contain any number of tunnel elements.

tunnel

The tunnel element specifies a static tunnel. It has six attributes: type, listen-port, dst-host, dst-port, allow-relay, and profile.

The type attribute defines the type of the tunnel. This can be either tcp or ftp.

The listen-port attribute defines the local port to be listened. The dst-host and dst-port attributes define the destination host address and port. The value of dst-host can be either an IP address or a domain name. The default is 127.0.0.1 (localhost = client host).

The allow-relay attribute defines whether connections to the listened port are allowed from outside the client host. The default is no.

The profile attribute specifies the connection profile id that is used for the tunnel.