Comments on: Creating a Permanent SSH Tunnel Between Linux Servers

By: Creating a Permanent SSH Tunnel from Linux | Tinkerings

Creating a Permanent SSH Tunnel from Linux | Tinkerings — Fri, 12 Jul 2019 17:04:46 +0000

[…] following script is heavily based on this article by Brandon Checketts (the general script structure and the auth setup required for this to work) and this Stack Exchange […]

By: Simon

Simon — Tue, 13 Mar 2012 20:06:32 +0000

I’ve modified this a bit for my usage and though some of you might find the info useful. I have a server at work with a static ip behind a firewall that I can’t change. I use that server to connect to another server (ssh port is only open to the work servers ip address) I can rdp into a machine on the same network and use putty to access the server.

So what I need is a tunnel to my machine at home (I use a Dynamic DNS to ensure that my home network is accessible from anywhere) now at home I can ssh -p 2222 localhost and get into the server at work.

Here’s my setup for you:

createTunnel() {
/usr/bin/ssh -f -N -R 2222:localhost:22 tunnel@[myhomenetworkname]
if [[ $? -eq 0 ]]; then
echo Tunnel to [myhomenetworkname] created successfully
else
echo An error occurred creating a tunnel to [myhomenetworkname] RC was $?
fi
}
## check to see if the tunnel is running. If it returns non-zero, then create a new connection
ps x | grep “2222\:localhost\:22”
if [[ $? -ne 0 ]]; then
echo Creating new tunnel connection
createTunnel
fi

All the rest of the instructions are the same.

By: chris

chris — Wed, 22 Feb 2012 16:11:02 +0000

FYI…If you are setting up a tunnel to allow other users to access you need to include the -g option

By: uday

uday — Mon, 13 Feb 2012 08:35:30 +0000

it is working perfect … Thanks a lot .. it saved a lot of time ….

By: dave

dave — Fri, 25 Feb 2011 02:19:32 +0000

I’m running this on a router. It forwards ports 139 and 445 from a remote samba server. Local windows clients can now access remote network shares by pointing at the router.

Had some problems with the original and the check-script posted by John on 15 Jan 2010. Got a fix that worked, though:
Replaced:

nc -w1 localhost $tunnel_entrance_port
with:
lsof -i :$tunnel_entrance_port

The first passed an error every time, so the original script always tried to re-create the tunnel(s). lsof -i checks for a process listening to a particular port. I figured that if the port is already open, ssh won’t be able to create the tunnel anyway.

By: Life-Blog » Bouw een redundant mysql systeem – deel 1

Life-Blog » Bouw een redundant mysql systeem – deel 1 — Tue, 24 Aug 2010 20:06:53 +0000

[…] reading: – https://www.howtoforge.com/mysql_master_master_replication – https://www.brandonchecketts.com/archives/creating-a-permanent-ssh-tunnel-between-linux-servers […]

By: Kurt Kraut

Kurt Kraut — Thu, 03 Jun 2010 16:13:37 +0000

SSH can do the job, but OpenVPN is really the best option for a permanent tunnel. It is more resilient than autossh.

By: Sidailurch

Sidailurch — Thu, 06 May 2010 04:20:22 +0000

kat – don’t know if you’re still looking, seeing as how i just stumbled upon this post – but i *think* what you’re looking for is x11vnc – that should do what you want. Hope it helps

By: kat

kat — Thu, 21 Jan 2010 00:04:54 +0000

I’m still looking for help on related issue….This is scenario:

I’m on my laptop, I want to run GUI that is on serverB.
I do not have direct access to serverB. I do, however, have access to serverA and from there can get to Server B.

For comman line stuff…I use putty to get to ServerA, and ssh to ServerB. How do I set up tunnel to be able to use VNCclient on my laptop to run vncserver on ServerB.

I know how to create putty tunnel to serverA in order to run vncserver on serverA. But how to do it when I have to get to ServerB thru serverA.

Anyone?

By: John

John — Fri, 15 Jan 2010 20:39:58 +0000

I did some slight modification to the checking script, to get rid of the 2 port requirement, and to make it command line parameter driven.

#!/bin/bash

tunnel_entrance_port=$1
tunnel_end=$2
destination=$3
destination_port=$4

## use nc to connect to tunnel entrance port. If it returns non-zero, then create a new connection
nc -w1 localhost $tunnel_entrance_port
if [[ $? -ne 0 ]]; then
echo Creating new tunnel connection
/usr/bin/ssh -f -N -L $tunnel_entrance_port:$destination:$destination_port $tunnel_end
if [[ $? -eq 0 ]]; then
echo Tunnel to $destination through $tunnel_end created successfully
else
echo An error occurred creating a tunnel to $destination through $tunnel_end was $?
fi
fi