|
|
|
|
Do you need to admin remote host placed in the intranet behind firewall out of your control? If the firewall performat NAT (masquerade) where you can connect from the intranet to the outer world by SSH you can use these security safe scripts.
If you are able to set up port forwarding on the firewall you do not need any such scripts. In the case of HTTP-only proxy you cannot use these scripts - look elsewhere.
| Summary | Unattended intranet host accessibility by SSH tunnel |
| License | Public Domain |
| State | Ready to use. Maintained. |
| GIT | GIT repository | Download GIT snapshot | GIT shortlog |
| Sponsorship | JKLabs |
| Programming language | bash |
Replace all strings hostintranet by the name of your firewalled intranet machine (without any dots - it must be valid string token).
Replace all strings public.internet.com by the hostname of your server in public Internet. Replace 1.2.3.4-IP-of-public.internet.com with IP address of this host
Generate new keypair by 'ssh-keygen -t dsa'.
Place its public key part to public.internet.com/home-hostintranet-ssht/.ssh/authorized_keys.
Place its private key part to hostintranet/public.internet.com--hostintranet-ssht--identity. Protect this file by 'chmod 600 hostintranet/public.internet.com--hostintranet-ssht--identity'.
Append line from public.internet.com/etc-passwd to the file /etc/passwd on your server in public Internet.
Append line from hostintranet/etc-inittab to the file /etc/inittab on your firewalled intranet machine.
Execute 'init q' command there.
EOF