Page 1 of 2 12 LastLast
Results 1 to 10 of 15
  1. #1
    Join Date
    Apr 2005
    Location
    Sydney, Australia
    Posts
    7

    Default SFTP support via a jump host

    Hi,

    I'm using BC3 on Windows. I want to synchronize directories across two Linux machines. For one of the machines, the network configuration requires a "jump server", i.e. a double hop from my Windows machine to the destination Linux box.

    I'm using the MobaXterm client to open an SSH terminal window to the destination box. I've attached a screenshot of the settings which work in MobaXterm (modified for security purposes). Is there any way I can configure BC3 to do the "double-hop" of Windows -> Jump Server -> Destination machine? I've tried every permutation in the BC3 FTP Profiles -> Edit -> Connection tab -> Proxy type dropdown list.

    It would be FANTASTIC if I could use BC on my Windows desktop and a double SFTP session between the two Linux machines in order to synchronize and track down the differences across the two machines. I know there are approaches I could use in Linux, the the graphical nature of BC makes this process so much easier and faster.

    Thanks...
    Attached Images Attached Images

  2. #2
    Join Date
    Oct 2007
    Location
    Madison, WI
    Posts
    11,612

    Default

    Hello,

    We do not have specific Jump Host support, but do allow an SFTP connection to be set up with a Proxy. Would this type of definition allow a connection to your server? Otherwise, is this machine accessible using other FTP clients like Filezilla? BC3 (and BC4) Pro's support is for SFTP, not a direct SSH connection.

    I should also note that SFTP support requires a Pro license. If you do not have Pro, you can revert to trial mode for testing:
    http://www.scootersoftware.com/suppo...?zz=kb_evalpro
    Aaron P Scooter Software

  3. #3
    Join Date
    Apr 2005
    Location
    Sydney, Australia
    Posts
    7

    Default

    Hi Aaron,

    Thanks for your reply. Much appreciated.

    I'll give a bit more detail on my environment...

    We have 4 Linux servers: DEV (Development), ST (System Testing), SIT (System Integration Testing), and STG (Staging).

    DEV and ST are accessed via a Socks4 proxy. SIT and STG are setup like the production servers, i.e. they have the jump host network configuration.

    Using BC3, I can synchronize data between DEV and ST fine, using dual SFTP profiles. The network speed is good and it's a godsend to help me synchronize and fix numerous configuration files.

    The setup for SIT (and STG) are per my MobaXterm screenshot: an SSH gateway (jump host), port 22, with no proxy configuration. Using this setup, I can open an SSH session to the final destination.

    Furthermore, MobaXterm also has automatic SFTP support. So, once I've connected to my Linux server via the jump host, I get an SFTP window as well. I've tested a download from the server and it successfully downloaded the file to my Windows machine, on which BC3 is running. So, assuming this really is SFTP protocol that MobaXterm is using, rather than something else under the covers, then I would hope I could configure BC3 to do the same.

    I've attached another screen shot showing the SFTP window when I've launched MobaXterm on the SIT machine via the jump host.

    Here is the information from Help -> About Beyond Compare:

    My Organization
    Max users: 10
    Serial #1234-5678 (I can send further license details though official support channels if needed)
    Pro Edition for Windows

    Thanks for any additional information you can provide.
    Attached Images Attached Images

  4. #4
    Join Date
    Oct 2007
    Location
    Madison, WI
    Posts
    11,612

    Default

    Thanks for the additional details. This is beyond our current support. You would probably have the best results setting up an SSH Tunnel (to get through the first connection), and then you can use any one-level SFTP client, like BC4, to connect.

    I'll add your notes and use case to our Customer Wishlist. It is not likely a project we'd be able to tackle soon, but this looks like useful reference material.
    Aaron P Scooter Software

  5. #5
    Join Date
    Apr 2005
    Location
    Sydney, Australia
    Posts
    7

    Default

    Hi Aaron, et. al.,

    I actually got this to work, and wanted to post this reply unless someone finds this thread in the future.

    In summary, MobaXterm has an SSH tunnelling feature. This may have been what you meant Aaron, I just didn't connect the dots until now.

    One thing to note is I could only get this to work with BeyondCompare 3. The same approach in Beyond Compare 4 failed with a connection error.

    I've put all the details in the attached document, including screenshots. Download the file and rename from .bcpkg to .pdf.

    Hope this helps someone in the future.

    And if you do know why it's not working in BC4 that would be useful information.

    Regards,
    Scott
    Attached Files Attached Files

  6. #6
    Join Date
    Oct 2007
    Location
    Madison, WI
    Posts
    11,612

    Default

    Hello,

    Thanks for the info and report. Would you be able to email us at support@scootersoftware.com with a link back to this forum thread, and include a pair of saved logs, connecting from BC3 and from BC4 so we can compare how BC4 errors out?
    Aaron P Scooter Software

  7. #7
    Join Date
    Nov 2007
    Posts
    28

    Default

    I'd like to second the request for SSH jumphost support. It seems it could be added pretty easily in the existing Proxy tab. Just need to offer a new type called SSH Jumphost and add the SSH private key file field that you have in the Login tab.

    Would be great, and it is about time for me to buy another license to support your fantastic product.


    In the interim, here is what I found to be the easiest way to get it working:

    1. Create an FTP profile for the destination host as you would if there wasn't a jumphost in the way. Use the hostname that you would use from the context of the jumphost. (i.e. if it has an internal hostname that your desktop machine can't normally resolve, use that internal name)
    2. On the Proxy tab, uncheck Use default
    3. Check Use proxy
    4. Set the Proxy type to "SOCKS 5"
    5. Enter "localhost" as the Host
    6. Leave the Port set to "1080"
    7. Leave the Username and Password blank.
    8. Save this FTP profile

    9. Before using the FTP profile you just created, open a connection to your jumphost as a SOCKS proxy.
    9a. For the command line OpenSSH utility, connect to your jumphost using the argument "-D 1080" (e.g. ssh -D 1080 jumphost.mycompany.com )
    9b. For a GUI SSH program, look for an option in the connection configuration called SOCKS proxy.
    Last edited by DEinspanjer; 20-Sep-2016 at 05:11 AM.

  8. #8
    Join Date
    Oct 2007
    Location
    Madison, WI
    Posts
    11,612

    Default

    And this method worked in BC4 or BC3?

    If only BC3, would it be possible to install the BC4 trial and send us in the pair of log files (as similarly requested above) along with the link back to this forum thread for our reference on the subject.
    Aaron P Scooter Software

  9. #9
    Join Date
    Nov 2007
    Posts
    28

    Default

    I am using BC 4 on the Mac, but I also tried on Windows with Cygwin ssh to make sure.

  10. #10
    Join Date
    Oct 2007
    Location
    Madison, WI
    Posts
    11,612

    Default

    Thanks for that testing. I'm not sure if this is a project we'll be able to tackle, but your workaround for other users is greatly appreciated, and I've added all this information to our entry on the subject.
    Aaron P Scooter Software

Posting Permissions

  • You may not post new threads
  • You may not post replies
  • You may not post attachments
  • You may not edit your posts
  •