Comments on: How to VPN using SSH

By: bodhi.zazen

bodhi.zazen — Tue, 26 Jul 2011 15:16:18 +0000

@Richard – How did you set up your tun ?

What was your ssh command ?

By: Richard

Richard — Tue, 26 Jul 2011 10:15:59 +0000

I get a message: Control socket connect(/var/run/ssh-vpn-tunnel-control): No such file or directory

On SUSE 11.3.

Any ideas? What should the contents of ssh-vpn-tunnel-control be?

By: biabani

biabani — Sat, 25 Jun 2011 16:38:21 +0000

hi
thanks for this document.

I want connect to vpn over ssh from windows, but I can’t find any software that do this work.
I don’t want that a port forward.
please tell me a ssh client for windows that do it work?

By: Wayne

Wayne — Wed, 11 May 2011 15:34:45 +0000

key is on a single line.

ssh-dsa AAA……..
tunnel=”0″,command=”/sbin/ifdown tun0; /sbin/ifup tun0″,no-port-forwarding,no-ptty,no-X11-forwarding,no-agent-forwarding ssh-rsa AAA…..

By: bodhi.zazen

bodhi.zazen — Wed, 11 May 2011 14:54:41 +0000

@Wayne

I would assume your syntax is off a bit. Post the first part of the key, the forced command, on a forums somewhere.

Examine the key and make sure it is all on one line.

By: Wayne

Wayne — Wed, 11 May 2011 03:16:39 +0000

When I have the force command at the start of the ssh-rsa line, I get prompted for a password. If I remove the force command, I can ssh to the server as root w/o a password.

What am I missing?

By: Mostafa Galmad

Mostafa Galmad — Sat, 05 Mar 2011 09:50:20 +0000

Dear Brother,
I’ve VPN one way is that configuration will make my VPN 2 way with out modifying any rule @ router??

By: bodhi.zazen

bodhi.zazen — Mon, 01 Nov 2010 17:26:27 +0000

@Behzadsh : I am not sure you can do this without root access.

By: Behzadsh

Behzadsh — Sun, 31 Oct 2010 23:44:21 +0000

I do not have root access on server. when I type “sudo ifup tun0″ it ask me for password of root.

By: bodhi.zazen

bodhi.zazen — Fri, 15 Jan 2010 17:31:42 +0000

Thank you fro your comments, they are appreciated.

ssh uses TCP, so, yes, you are correct the connection will show as a tcp connection.

I am referring not to the tunnel, but the way the traffic is transported within the tunnel if that makes sense.

My explanation is probably wrong, and it has been some time since I looked at the exact details, and I have seen more then one opinion on the technical details, so I need to apologize for not haveing a better answer or any errors in my understanding.

I would have to refer you to the technical documents, here is one example;

http://www.debian-administration.org/article/Setting_up_a_Layer_3_tunneling_VPN_with_using_OpenSSH

I think the “simple message” is that this protocol is not the same as port forwarding or tunneling over ssh.

I will have to leave the technical details for those who are interested further to review / debate, but if anyone knows a better technical review perhaps they can post back.