A Brief Tunneling Tutorial
by s0ke
Recently, I came across an issue where I wanted to be able to SSH into a box behind a pesky corporate firewall. Not having access to said firewall, I decided to take matters into my own hands and set up a reverse SSH tunnel from that box to a box out on the Interweb that I can access.
Installation
The device that will be accessed behind the corporate firewall is a Raspberry Pi B+ installed with the vanilla version of Raspbian. Out of the box, this is already set up for DHCP. The following commands are all run on the Pi.
First, I will install 'autossh', which is a program that will automatically detect SSH connection drops and reconnect them - essentially keeping my tunnel alive and up:
I then generate an SSH key for my Pi to be able to SSH into myremotebox:
I copy the key from my Pi to myremotebox:
Bash/RC
Here is a simple Bash script (tun.sh) that creates the tunnel using autossh:
I then add the following line to my /etc/rc.local file. I want this to run as my Pi user. I also add a sleep timer to ensure that networking is available before this script attempts to execute:
Tunnel Up
Now that everything is in place. I covertly place my Pi inside the corporate office and leave for the day. I then access my public Linux machine later that night and connect to the reverse tunnel.