{"id":515,"date":"2014-11-25T09:12:05","date_gmt":"2014-11-25T09:12:05","guid":{"rendered":"http:\/\/josephpcohen.com\/w\/?p=515"},"modified":"2014-11-25T23:57:33","modified_gmt":"2014-11-25T23:57:33","slug":"ssh-behind-firewall-using-simple-ncat-proxy","status":"publish","type":"post","link":"https:\/\/josephpcohen.com\/w\/ssh-behind-firewall-using-simple-ncat-proxy\/","title":{"rendered":"SSH behind firewall using simple ncat proxy and unmodified intermediary server"},"content":{"rendered":"

Sometimes we want to SSH to machines that are behind restrictive firewalls or just because the IP keeps changing. Here I discuss a way to proxy using any publicly accessible SSH server without modification to proxy between two machines that are not directly accessible. For example you can SSH from your laptop in a coffee shop to your home machine which has a dynamic IP or your work machine which is behind a firewall.
\n
\nSolutions exist for making the connection but they use other peoples servers like Google or TeamViewer and most likely don’t work with SSH. There are also some systems such a puppet and chef that will allow controlling machines but not realtime like SSH and also require special code on servers. It’s desired to preserve the beauty of SCP for copying files and SSH (-D or -L) port forwarding so elegantly on the command line. Trying to write something special to do this is not necessary because:<\/p>\n

<\/p>\n

We can just script it with ncat!<\/h2>\n

<\/center><\/p>\n

\"sshproxy\"<\/a>
\n


\n