Mohnish's tidbits

Mohnish's personal blog

© 2019. Mohnish Chaudhary All rights reserved.

SSH reverse proxy

Discovered today that SSH reverse proxy option allows bypassing firewalls. It’s helpful in connecting to devices sitting behind a router with no port forwarding setup. E.g. If I need to SSH to my friend’s laptop, who has no port forwarding setup, I can ask him to SSH to my router using command:

ssh -NR 8000:localhost:22 [email protected]

Then I login to my router and the following command gives me shell access to his machine:

ssh -p 8000 [email protected]

Although, I setup SSH tunnel to my router in the example above, this is not required. This tunnel can be set up for any machine.

Please note that while using dropbear keys for password-less authentication between the two routers, the commands need to specify the dropbear identity key also.