Re: Non-root tun-over-ssh?

To: Scott Solmonson <scosol%scosol.org@localhost>
Subject: Re: Non-root tun-over-ssh?
From: John Klos <john%ziaspace.com@localhost>
Date: Tue, 20 Sep 2011 03:04:02 +0000 (UTC)

Maybe I'm missing something- or maybe two things.

OpenSSH "tunnels" are app-level things, and have nothing to do with
the tun interface.

You're right that the most common use of ssh for tunnels are forindividual ports, but OpenSSH also has the ability to set up apoint-to-point tunnel. You can read more about it here:


http://bodhizazen.net/Tutorials/VPN-Over-SSH

and here:

http://blog.brixandersen.dk/?p=47

It works well and lets me get real IPv6 wherever I go, plus in some placesI route using real public IPs which can be used to present services, doNAT, et cetera.

And ideally, the routing table should be untouched as well.
This requires either apps that have flexible connection settings (most
do) or the use of a tcpwrapper/netcat kind of program.

The creation of tun0 (or tun whatever number) doesn't touch the routingtable, but making tun0 useful does. I just want to do ssh -w0:0 as anon-root user and worry about the rest later.

If this is not what you want at all, and you're talking about what I
think you might be, then OpenVPN is the solution :)


Hmmm... Looks interesting. I'll have to play with it.

Thanks,
John

Follow-Ups:
- Re: Non-root tun-over-ssh?
  - From: Gert Doering
- Re: Non-root tun-over-ssh?
  - From: Scott Solmonson

References:
- Non-root tun-over-ssh?
  - From: John Klos
- Re: Non-root tun-over-ssh?
  - From: Chuck Swiger
- Re: Non-root tun-over-ssh?
  - From: John Klos
- Re: Non-root tun-over-ssh?
  - From: Scott Solmonson

Prev by Date: Re: Non-root tun-over-ssh?
Next by Date: Re: Non-root tun-over-ssh?
Previous by Thread: Re: Non-root tun-over-ssh?
Next by Thread: Re: Non-root tun-over-ssh?
Indexes:

Home | Main Index | Thread Index | Old Index