<br><font size=2 face="sans-serif">Wad,</font>
<br><font size=2 face="sans-serif">thanks for the help. I should
have realized the subnets overlapped! Here is what I got working:</font>
<br>
<br><font size=2 face="sans-serif">Red zone:</font>
<br><font size=2 face="sans-serif">(ISP) 192.168.0.1 ----------------------
192.168.0.10 (Windows XP)</font>
<br><font size=2 face="sans-serif">(ISP)192.168.0.1----------------------
192.168.0.29 eth0 (squid)</font>
<br>
<br><font size=2 face="sans-serif">Yellow zone: (I just used a cross over
cable between the two boxes)</font>
<br><font size=2 face="sans-serif">(squid) 10.0.0.1 -------------------------10.0.0.77
(schoolserver)</font>
<br>
<br><font size=2 face="sans-serif">Green zone:</font>
<br><font size=2 face="sans-serif">(schoolserver) 17.x.x.x ---------------
XO laptop</font>
<br>
<br><font size=2 face="sans-serif">To get SSH to work from my Windows XP
over to the XS (schoolserver) involves:</font>
<br>
<br><font size=2 face="sans-serif">Step 1: On Windows, create public/private
keys</font>
<br><font size=2 face="sans-serif">ssh-keygen -t dsa ==>
.ssh/id_win.pub</font>
<br>
<br><font size=2 face="sans-serif">Step 2: On Squid, copy windows
public key</font>
<br><font size=2 face="sans-serif">cat id_win.pub >> /root/.ssh/authorized_keys</font>
<br>
<br><font size=2 face="sans-serif">Step 3: On Squid, generate a second
set of public/private keys</font>
<br><font size=2 face="sans-serif">ssh-keyget -t dsa ==> .ssh/id_squid.pub</font>
<br>
<br><font size=2 face="sans-serif">Step 4: On XS, copy squid public key</font>
<br><font size=2 face="sans-serif">cat id_squid.pub >> /root/.ssh/authorized_keys</font>
<br>
<br><font size=2 face="sans-serif">Step 5: restart sshd on both Squid and
XS machines to pick up these changes</font>
<br>
<br><font size=2 face="sans-serif">Step 6: From Windows, SSH over to Squid,
then from within Squid SSH over to XS. Here is what</font>
<br><font size=2 face="sans-serif">it looks like:</font>
<br>
<br><font size=2 face="Courier New">C:\Documents and Settings\Anthony>ssh
-l root 192.168.0.29</font>
<br><font size=2 face="Courier New">Enter passphrase for key '/home/Anthony/.ssh/id_dsa':</font>
<br><font size=2 face="Courier New">Last login: Sun Feb 17 10:57:41 2008
from 192.168.0.10</font>
<br>
<br><font size=2 face="Courier New">Welcome to an OLPC Schoolserver</font>
<br><font size=2 face="Courier New">[root@squid ~]# ssh -l root 10.0.0.77</font>
<br><font size=2 face="Courier New">Enter passphrase for key '/root/.ssh/id_dsa':</font>
<br><font size=2 face="Courier New">Last login: Sun Feb 17 11:06:51 2008
from 10.0.0.1</font>
<br>
<br><font size=2 face="Courier New">Welcome to an OLPC Schoolserver</font>
<br><font size=2 face="Courier New">[root@schoolserver ~]#</font>
<br>
<br><font size=2 face="sans-serif">Ok, so now I have "root@squid"
and "root@schoolserver" to distinguish the two.</font>
<br><font size=2 face="sans-serif"><br>
</font>
<table>
<tr>
<td>
<tr>
<td><font size=1><br>
</font>
<table>
<tr>
<td>
<td><font size=1 color=#0060a0 face="Microsoft Sans Serif"><b>Tony Pearson</b></font><font size=1 face="Microsoft Sans Serif"><br>
Senior Storage Consultant, IBM System Storage™<br>
Telephone: +1 520-799-4309 | tie 321-4309 | Cell: +1 520 990-8669<br>
email: tpearson@us.ibm.com | GSA: http://tucgsa.ibm.com/~tpearson<br>
Blog: http://www.ibm.com/developerworks/blogs/page/InsideSystemStorage
AKA: 990tony Paravane, eightbar specialist </font></table>
<br>
<tr>
<td></table>
<br>