How to SSH Tunnel into the NJIT Network

Purpose: This documentation will show you how to create an encrypted "tunnel" between your computer (which is not on NJIT's network) to NJIT's network. A tunnel is the transmission of data intended for use within a private network.

There are two hosts on NJIT's network that are open to the Internet: afsconnect1.njit.edu and afsconnect2.njit.edu

In the example that follows, afsconnect2.njit.edu will be used. You will be forwarding network traffic from your computer to afsconnect2.njit.edu

Enter:

ssh UCID@afsconnect2.njit.edu -D PORT

into the command line.

The -D option takes the port number on your computer that will be used for forwarding.

Replace PORT with any number between 1024 and 65535; any port number below 1024 is a privileged port and can only be forwarded by the root user.

For example:

ssh xzf23@afsconnect2.njit.edu -D 8080

Once you have established a connection, you have to set up a Socket Secure (SOCKS) proxy (which will forward requests on your behalf): in your system's network settings configure a SOCKS proxy to connect to 127.0.0.1:PORT, where PORT is the port number specified above: 127.0.0.1:8080

This will send network traffic from your computer, from any protocol, through the tunnel, to the host that was specified (afsconnect2.njit.edu) in the example above.

To discontinue the tunneling terminate the SSH connection.