Stunn is short for "Starry Tunnelling", which is a collection of bash scripts that I use for connecting my computers hidden inside an internal network (which has internet connections). It comes with a self-checking and automatic reconnection mechanism that keeps constant secure connection.
- Bash environment (or any other sh)
- A computer connected to internal network (but it must have internet connection), with ports opened (port 22 and 8848 by default).
- A computer with a public IP address (static IP is preferred), with both ports opened (port 22 and 8848 by default).
- OpenSSH (
sudo apt install openssh-server) - (Optional) Screen (
sudo apt install screen)
Rename "ssh-forward.conf.example" to "ssh-forward.conf", and modify it according to your server settings.
If you want password-less connection, please create an SSH key pairs on the local machine and send the public key to the remote server (steps as follows). If not, every time you start the service, you need to specify the password on the remote server.
Steps to set up SSH password-less connection:
- On the local server, run
ssh-keygen -t rsa 2048. Then press enter until it is fully executed. - There will be two files "id_rsa" and "id_rsa.pub" located in $HOME/.ssh/ folder. Send the public key "id_rsa.pub" to your remote server by running
scp $HOME/.ssh/id_rsa.pub $REMOTE_USERNAME@$REMOTE_SERVER_IP:~/local_pubkey.pub - SSH to the remote server, and run
mkdir -p ~/.ssh; cat ~/local_pubkey.pub >> ~/.ssh/authorized_keys
Wala, now you can SSH to the remote machine from you local one without password prompts.
On the local server, run bash ssh-forward.sh to start the SSH tunneling service. If you have "screen" installed, you can also run bash run-on-startup.sh to run the service in the background. If you can also put "run-on-startup.sh" in crontab to start the SSH tunnelling service upon system reboot.
Just run ssh $REMOTE_USERNAME@$REMOTE_SERVER_IP -p 8848 to connect to the server hidden inside an internal network.