Comments on: How to VPN using SSH http://blog.bodhizazen.net/linux/how-to-vpn-using-ssh/ A LAMP in the Samsara Tue, 07 Sep 2010 07:48:01 +0000 http://wordpress.org/?v=2.9.2 hourly 1 By: bodhi.zazen http://blog.bodhizazen.net/linux/how-to-vpn-using-ssh/comment-page-1/#comment-1451 bodhi.zazen Fri, 15 Jan 2010 17:31:42 +0000 http://blog.bodhizazen.net/?p=328#comment-1451 Thank you fro your comments, they are appreciated. ssh uses TCP, so, yes, you are correct the connection will show as a tcp connection. I am referring not to the tunnel, but the way the traffic is transported within the tunnel if that makes sense. My explanation is probably wrong, and it has been some time since I looked at the exact details, and I have seen more then one opinion on the technical details, so I need to apologize for not haveing a better answer or any errors in my understanding. I would have to refer you to the technical documents, here is one example; http://www.debian-administration.org/article/Setting_up_a_Layer_3_tunneling_VPN_with_using_OpenSSH I think the "simple message" is that this protocol is not the same as port forwarding or tunneling over ssh. I will have to leave the technical details for those who are interested further to review / debate, but if anyone knows a better technical review perhaps they can post back. Thank you fro your comments, they are appreciated.

ssh uses TCP, so, yes, you are correct the connection will show as a tcp connection.

I am referring not to the tunnel, but the way the traffic is transported within the tunnel if that makes sense.

My explanation is probably wrong, and it has been some time since I looked at the exact details, and I have seen more then one opinion on the technical details, so I need to apologize for not haveing a better answer or any errors in my understanding.

I would have to refer you to the technical documents, here is one example;

http://www.debian-administration.org/article/Setting_up_a_Layer_3_tunneling_VPN_with_using_OpenSSH

I think the “simple message” is that this protocol is not the same as port forwarding or tunneling over ssh.

I will have to leave the technical details for those who are interested further to review / debate, but if anyone knows a better technical review perhaps they can post back.

]]> By: mzs http://blog.bodhizazen.net/linux/how-to-vpn-using-ssh/comment-page-1/#comment-1450 mzs Fri, 15 Jan 2010 16:52:09 +0000 http://blog.bodhizazen.net/?p=328#comment-1450 I see in your later article: http://bodhizazen.net/Tutorials/VPN-Over-SSH/ """ #3 This protocol uses udp to transmit tunneled tcp connections resulting in a more stable connection compared with port forwarding (using ssh with the -L or -D options). """ I believe this is incorrect, though I have not read your article in full. If you take a look at netstat, lsof, or tcpdump you should see that all traffic is being tunneled over a single TCP port. Your idea of using sudo is very clever though, thanks for that, though I would limit the args as well. I see in your later article:

http://bodhizazen.net/Tutorials/VPN-Over-SSH/

“”"
#3 This protocol uses udp to transmit tunneled tcp connections resulting in a more stable connection compared with port forwarding (using ssh with the -L or -D options).
“”"

I believe this is incorrect, though I have not read your article in full. If you take a look at netstat, lsof, or tcpdump you should see that all traffic is being tunneled over a single TCP port.

Your idea of using sudo is very clever though, thanks for that, though I would limit the args as well.

]]> By: bodhi.zazen http://blog.bodhizazen.net/linux/how-to-vpn-using-ssh/comment-page-1/#comment-977 bodhi.zazen Wed, 19 Aug 2009 01:51:56 +0000 http://blog.bodhizazen.net/?p=328#comment-977 I agree with your Mike Trebot, but I kind of like to have this option in my bag of tricks. I agree with your Mike Trebot, but I kind of like to have this option in my bag of tricks.

]]> By: Lewis http://blog.bodhizazen.net/linux/how-to-vpn-using-ssh/comment-page-1/#comment-974 Lewis Tue, 18 Aug 2009 05:56:07 +0000 http://blog.bodhizazen.net/?p=328#comment-974 <strong>network security vpn...</strong> I can't believe I missed this! I'm going to have to do some more reading me thinks.... network security vpn…

I can’t believe I missed this! I’m going to have to do some more reading me thinks….

]]> By: Mike Trebot http://blog.bodhizazen.net/linux/how-to-vpn-using-ssh/comment-page-1/#comment-973 Mike Trebot Mon, 17 Aug 2009 13:10:18 +0000 http://blog.bodhizazen.net/?p=328#comment-973 Hi, It might be easier (and possibly slightly faster in use) to use OpenVPN to manage the tunnel connections. It's obviously a little more work initially, since you'd need to add the OpenVPN package but for a really high speed VPN connection its widely thought of as being the best all-round solution. Hi,

It might be easier (and possibly slightly faster in use) to use OpenVPN to manage the tunnel connections. It’s obviously a little more work initially, since you’d need to add the OpenVPN package but for a really high speed VPN connection its widely thought of as being the best all-round solution.

]]> By: Ubuntu Trucchi http://blog.bodhizazen.net/linux/how-to-vpn-using-ssh/comment-page-1/#comment-687 Ubuntu Trucchi Sat, 23 May 2009 20:06:23 +0000 http://blog.bodhizazen.net/?p=328#comment-687 <strong>Configurare una VPN attraverso SSH...</strong> Un articolo di qualche giorno fa spiega come configurare una VPN sfruttando il server e il protocollo SSH. Verrà configurata un’interfaccia virtuale chiamata tun0 che per la subnet 10.0.0.0/24 farà transitare il traffico attraverso una connession... Configurare una VPN attraverso SSH…

Un articolo di qualche giorno fa spiega come configurare una VPN sfruttando il server e il protocollo SSH. Verrà configurata un’interfaccia virtuale chiamata tun0 che per la subnet 10.0.0.0/24 farà transitare il traffico attraverso una connession…

]]>