Koozali.org: home of the SME Server

Obsolete Releases => SME Server 8.x => Topic started by: Brave Dave on October 26, 2010, 02:09:10 AM

Title: ssh -w option
Post by: Brave Dave on October 26, 2010, 02:09:10 AM

Hi

open-ssh 4.3 introduces "layer-3 IP-in-SSH tunnelling", it's the ability to create VPN's using ssh and a tun interface

I've played with this using ubuntu (http://bodhizazen.net/Tutorials/VPN-Over-SSH/), and it should work under CentOS

I think it should work like this

Quote

ssh -NTCf -w 0:0 <serverip>

The ifconfig should show the tunnel interface

i go:

Quote

modprobe tun
ssh -NTCf -w 0:0 <serverip>

it shows up in the dmesg output

Quote

tun: Universal TUN/TAP device driver, 1.6
tun: (C) 1999-2004 Max Krasnyansky <maxk@qualcomm.com>

but not for ifconfig ...

Is it disabled or anything - any ideas ?

Title: Re: ssh -w option
Post by: CharlieBrady on November 05, 2010, 10:58:23 PM

The HOWTO refers to configuring the client via /etc/network/interfaces. RHEL/CentOS doesn't have that file or use it for interface configuration.

You also would need to set the Tunnel option in the ssh client, either in /etc/ssh/ssh_config, ~/.ssh/config or via -o command line option.

You will likely get more help with this issue in an openssh or centos forum.

Title: Re: ssh -w option
Post by: Brave Dave on November 06, 2010, 08:05:35 AM

Thanks Charlie

The VPN looks interesting there

the missing component was tunctl