Setting up and using Secure Shell's SSH port forwarding

It is possible to setup an SSH tunnel for other less secure protocols that will allow them to use the encryption built into SSH to be more secure. You must first have an SSH client that supports Port Forwarding. An easy to install version of Secure Shell's SSH for Windows is available for download by clicking here.

After successfully installing SSH Secure Shell and launching the program, the first window you see will be the default SSH Secure Shell terminal window. Note the message along the bottom of the window.

In the "Connect to Remote Host" window you enter the host name or IP address of the host you wish to connect to and your username.

After clicking Connect (in the window above) you may see a Host Identification box if this is the first time you have attempted to connect to the named host. This is an informational message pointing out that you are about to connect to the host for the first time. If you wish, you can add this computer to the hosts list by clicking the Yes box.

To view or edit your SSH forwarding entries, from the terminal window click on Edit and select Settings. Under Host Settings click on Tunneling and select Outgoing. Here you can add new entries or edit ones you already have. Also note that on the Tunneling page you have the option to forward X connections if you like.

Please note: If there are no forwarding entries in your table you will need to logoff and then reconnect for your newly added entries to take effect.

Enter a descriptive name for the tunnel. Forward local port by entering the Listen port number. Then enter the Destination host name and port number.

Here is an example of the three entries needed to send and receive POP mail and be able to view the protected Scripps web pages. You will also need to make a change to your email client configuration.

Using this example when configuring your email client... Use the name localhost as the name of your incoming and outgoing email server, and confirm that the incoming port is 110 and outgoing port is 25.

When using your browser to view the protected Scripps web pages do not type in the url (www.scripps.edu) Instead type http://localhost:80 and you will be able to follow the links from there.