Jump to content

SSH Port Forwarding:Overview: Difference between revisions

From jb-vpn.uk Wiki
Newer edit →
Added troubleshooting guide: SSH Port Forwarding Overview
 
Content removed - troubleshooting guide: SSH Port Forwarding Overview (5 sections)
Line 8: Line 8:


= '''Configuration File''': <code>/etc/ssh-port-forwards.conf</code> =
= '''Configuration File''': <code>/etc/ssh-port-forwards.conf</code> =
   '' Defines all SSH port forwards in a simple format
   * Defines all SSH port forwards in a simple format
   '' One device per line
 
   * One device per line


= '''Management Script''': <code>/usr/local/bin/ssh-port-forward-manager.sh</code> =
= '''Management Script''': <code>/usr/local/bin/ssh-port-forward-manager.sh</code> =
   '' Adds, removes, and lists SSH port forwards
   * Adds, removes, and lists SSH port forwards
   '' Applies iptables rules automatically
 
   '' Validates configurations
   * Applies iptables rules automatically
 
   * Validates configurations


= '''Integration''': <code>/etc/openvpn/iptables-restore.sh</code> =
= '''Integration''': <code>/etc/openvpn/iptables-restore.sh</code> =
   '' Automatically applies all port forwards when VPN starts
   * Automatically applies all port forwards when VPN starts
   '' Ensures rules persist after reboots
 
   * Ensures rules persist after reboots


=== How It Works ===
=== How It Works ===
Line 49: Line 53:
== Related Documentation ==
== Related Documentation ==


'' [[Documentation:Configuration](Configuration|- Configuration file format
* [[Documentation:Configuration](Configuration|- Configuration file format
'' [Management]])(management.md) - Managing port forwards
 
'' [[Troubleshooting:Port Forwarding Troubleshooting|Troubleshooting]] - Troubleshooting guide
* [Management]])(management.md) - Managing port forwards
 
* [[Troubleshooting:Port Forwarding Troubleshooting|Troubleshooting]] - Troubleshooting guide


[[Category:Documentation]]
[[Category:Documentation]]
[[Category:Documentation/SSH Port Forwarding]]
[[Category:Documentation/SSH Port Forwarding]]

Revision as of 13:28, 1 January 2026

SSH Port Forwarding Overview

This document describes the SSH port forwarding system architecture and how it works.

Architecture

Components

Configuration File: /etc/ssh-port-forwards.conf

  * Defines all SSH port forwards in a simple format

  * One device per line

Management Script: /usr/local/bin/ssh-port-forward-manager.sh

  * Adds, removes, and lists SSH port forwards

  * Applies iptables rules automatically

  * Validates configurations

Integration: /etc/openvpn/iptables-restore.sh

  * Automatically applies all port forwards when VPN starts

  * Ensures rules persist after reboots

How It Works

External Client → VPS:EXTERNAL_PORT (e.g., 22222)
  → iptables DNAT rule
  → VPN Tunnel (tun0)
  → VPN_DEVICE:SSH_PORT (e.g., 10.8.0.2:22)

Current Configuration

To see the current configuration: 

cat /etc/ssh-port-forwards.conf

To see active iptables rules: 

= View DNAT rules =
iptables -t nat -L PREROUTING -n -v | grep DNAT

= View FORWARD rules =
iptables -t filter -L FORWARD -n -v | grep -E "10\.8\.0\."
  • [[Documentation:Configuration](Configuration|- Configuration file format
  • [Management]])(management.md) - Managing port forwards
Retrieved from "https://wiki.jb-vpn.uk/index.php?title=SSH_Port_Forwarding:Overview&oldid=197"