Stunnel/SSH

From charlesreid1

Revision as of 21:21, 30 March 2017 by Admin (talk | contribs)

This page covers the basic procedure required to carry SSH traffic over an stunnel connection.

Also see RaspberryPi/SSH Stunnel

Overview

This guide will cover how to get an stunnel client and stunnel server to create an encrypted connection on an arbitrary port, and how to forward SSH traffic from any local port on the client end through that encrypted tunnel and on to any local port on the server end.

We will use a specific example here: the client wants to be able to SSH to a local port, say port 2222, and have this transparently forwarded to another local port on the server, say port 22.

In that way, the client transparently sees: 

[client] $ ssh -p 2222 root@localhost

[server ~ via client] $

No information about the server needs to be specified - the connection happens transparently on the networking layer.

Setting up client

See Stunnel/Client port 8000 port 22

Setting up server

See Stunnel/Server

port 2222 port 8000

Connecting

Run stunnel on both machines, check that everything is operating correctly.

Testing

ssh -p 2222 root@localhost

Retrieved from "https://charlesreid1.com/w/index.php?title=Stunnel/SSH&oldid=15810"