PuTTY dynamic port forwarding with access to localhost ports

I want to combine the functionality of two SSH tunnels set up through PuTTY.

The first tunnel is:

PuTTY: L8000 127.0.0.1:8000 (in SSH->Tunnels), and
Firefox: SOCKS (v5) Host:127.0.0.1, Port:8000

This lets me navigate to http://localhost:8000 on my local browser and connect to localhost:8000 on my remote server, which I use to access a web development server on that port.

The second tunnel simply uses PuTTY set to D8000 (with same Firefox settings), which lets me browse the internet at large through my remote server.

The problem is, I want to connect to, say, "google.com" and "localhost:8000" (on the remote server) in the same session. This is mainly because my web development server (tunnel 1) needs access to remote links (e.g. google APIs). I thought the dynamic port forward in tunnel 2 would work but I can no longer reach localhost:8000 on the remote server by navigating to localhost:8000 in the browser.

I have searched far and wide but I cannot find any answer. I suspect it's because the answer is too obvious :/

tunnel 1 PuTTY settings

tunnel 2 PuTTY settings

netstat -nptl output (with development server running)

Proto Recv-Q Send-Q Local Address Foreign Address State PID/Program name tcp 0 0 127.0.0.1:8000 0.0.0.0:* LISTEN 23172/python tcp 0 0 0.0.0.0:22 0.0.0.0:* LISTEN 574/sshd tcp 0 0 0.0.0.0:11211 0.0.0.0:* LISTEN 572/memcached tcp 0 0 127.0.0.1:38637 0.0.0.0:* LISTEN 27836/firefox tcp 0 0 0.0.0.0:6000 0.0.0.0:* LISTEN 27635/Xvfb tcp 0 0 127.0.0.1:5454 0.0.0.0:* LISTEN 812/postgres tcp6 0 0 :::3047 :::* LISTEN 574/sshd tcp6 0 0 :::11211 :::* LISTEN 572/memcached tcp6 0 0 :::6000 :::* LISTEN 27635/Xvfb tcp6 0 0 :::8983 :::* LISTEN 257/java

ZG101

Posted 2016-12-15T22:50:05.373

Reputation: 123

can you screenshot the putty port forwarding configuration for both tunnels? and paste the output from netstat -ptl (edit any sensitive IPs) – bao7uo – 2016-12-15T22:59:04.240

@PHPaul Sure, I've uploaded the screenshots. – ZG101 – 2016-12-15T23:18:26.477

Thanks... by the way I don't think anything is listening on port 8000 on your machine at the moment? I should have said netstat -nptl which would have given port numbers instead of names, but I don't think those names correspond to 8000. – bao7uo – 2016-12-15T23:34:53.173

Oh, I wasn't running the development server earlier, so I re-ran netstat -tlpn with the server running and it is listening on 8000 – ZG101 – 2016-12-15T23:53:18.113

seeing as it it is only bound to 127.0.0.1, I will revise my answer below slightly.... – bao7uo – 2016-12-15T23:54:32.867

Thanks for the ideas. So far I've set the dynamic port forward to use 8001, and Firefox to use SOCKS 127.0.0.1 8001 too. The dynamic port forward then works as normal (e.g. can visit google.com), but http://127.0.0.1:8000 doesn't redirect to remote server 8000 like with tunnel 1. Also set a hostname alias newhostname and tried navigating to http://newhostname:8000 but didn't get there

– ZG101 – 2016-12-16T00:12:55.373

updated answer accordingly... :) – bao7uo – 2016-12-16T00:16:05.660

1OK, it works and I'm thrilled! It was a bit different to what you suggested though, as I simply had to add two rules to the same PuTTY connection (one local listening on 8000, one dynamic listening on 8001) and only use one Firefox browser with SOCKS 127.0.0.1:8001. If you are happy with me revising your answer to what worked and removing the extra suggestions, I can mark your answer as accepted – ZG101 – 2016-12-16T00:42:26.117

Thanks. I +1'd your answer too but with only 6 points it doesn't even show! – ZG101 – 2016-12-16T00:53:58.113

PuTTY dynamic port forwarding with access to localhost ports

Answers