Combining Transparent Proxying with SSH Port Forwarding

Dan Kaminsky dan at doxpara.com
Thu Sep 11 13:26:26 EST 2003


> There are patches around to use OpenSSH dynamic portforwarding as a 
> transparent gateway under OpenBSD pf's NAT. I don't know whether we 
> want to support and maintain variants for every OS's favourite packet 
> filter in the tree though...

We should encourage good, implementation-independent SOCKSifiers for the 
various OS's, but that's the extent I see it being appropriate to dive 
into kernelspace.

I wouldn't mind a patch to automatically reconnect a SSH session that's 
failing keepalives, though.

--Dan





More information about the openssh-unix-dev mailing list