smart_reverse_tunnel is a project that simplifies the setup and management of reverse SSH tunnel based on autossh. It includes a shell script and a systemd service to ensure reliable and persistent connections.
This shell script automates the process of establishing a reverse SSH tunnel. It ensures that the tunnel remains active and automatically reconnects if the connection drops.
The script scans all network interfaces, checks their metrics, and starts establishing the tunnel from the interface with the lowest metric. It pings the remote host to ensure connectivity. If the tunnel cannot be established, it moves on to the next interface with a higher metric and continues this process.
The systemd service file configures and manages the smart_reverse_tunnel.sh script, ensuring it starts at boot and keeps running continuously.
- Automatic Reconnection: Ensures that the reverse SSH tunnel is always active.
- Interface Selection: Automatically selects the best network interface based on metrics.
- Easy to Configure: Simple setup with minimal configuration.
- Systemd Integration: Seamless integration with systemd for automatic startup and monitoring.
The script smart_reverse_tunnel.sh includes several variables that need to be configured according to your environment:
REMOTE_HOST="10.10.10.10"
REMOTE_PORT=22
REMOTE_USER="remoteuser"
REVERSE_TUNNEL_PORT=2221
LOCAL_TUNNEL_PORT=222
PRIVATE_KEY_PATH=""
PING_TIMEOUT=2- REMOTE_HOST: The IP address or hostname of the remote server.
- REMOTE_PORT: The SSH port on the remote server.
- REMOTE_USER: The username to use for the SSH connection.
- REVERSE_TUNNEL_PORT: The port on the remote server for the reverse tunnel.
- LOCAL_TUNNEL_PORT: The local port to forward.
- PRIVATE_KEY_PATH: Path to the SSH private key (if applicable).
- PING_TIMEOUT: Timeout for the ping check to ensure the tunnel is active.
The script smart_reverse_tunnel.service includes several variables that need to be configured according to your environment:
[Service]
ExecStart=/home/localuser/scripts/smart_reverse_tunnel.sh
#User=localuser #Uncomment when run this systemd service as root usersudo apt install autosshsudo yum install autossh- Copy the
smart_reverse_tunnel.shscript to your desired location (e.g.,/home/localuser/scripts/). - Adjust the script and service file as needed.
- Ensure the script has executable permissions:
chmod +x /home/localuser/scripts/smart_reverse_tunnel.sh
- Move the
smart_reverse_tunnel.servicefile to the systemd directory:cp smart_reverse_tunnel.service /etc/systemd/system/ systemctl daemon-reload
- Enable and start the systemd service:
sudo systemctl daemon-reload sudo systemctl enable smart_reverse_tunnel.service sudo systemctl start smart_reverse_tunnel.service
- Copy the
smart_reverse_tunnel.shscript to your desired location (e.g.,/home/localuser/scripts/). - Adjust the script and service file to match the user's environment.
- Ensure the script has executable permissions:
chmod +x /home/localuser/scripts/smart_reverse_tunnel.sh
- Move the
smart_reverse_tunnel.servicefile to the user's systemd directory:mkdir -p ~/.config/systemd/user cp smart_reverse_tunnel.service ~/.config/systemd/user/ systemctl --user daemon-reload
- Enable and start the systemd service for the user:
systemctl --user enable smart_reverse_tunnel.service systemctl --user start smart_reverse_tunnel.service - Make sure the user services are started at login:
loginctl enable-linger $(whoami)