This is just to keep a reference (so I don’t have to google it again :-) ): One can create a “quick and dirty” VPN using pppd and ssh:
bash$ /usr/sbin/pppd noauth 10.0.0.1:10.0.0.2 pty 'ssh -x -t -e none remote_user@remote_server /usr/sbin/pppd passive noauth'This assumes both users (local and remote) have permissions to run pppd (some sudo trickery may become very handy) and that no password is asked by ssh (password-less key authentication).
Quite handy, ain’t it?
Hi.
Why not use OpenSSH tun(/tap) support? (-w commandline option with recent versions of OpenSSH IIRC).
I find that a bit easier to use.
Regards, Sven
@Sven,
It’s handy, for sure… Last time I checked, it required RootLogin tough, which is a no-go for me…
@spectra: Just add keys to root’s authorized_keys file, and limit those keys to only run a single command, namely a script to set up the other end of the point-to-point network connection.
Convenient but prone to performance problems.. see http://sites.inka.de/~W1011/devel/tcp-tcp.html
I’d rather suggest you paste two quick-and-dirty OpenVPN configurations (server and client) for your future use ☺ Similar reasons as these already stated. OpenSSH probably won’t see UDP transport in a while…
@Anonymous,
Right… This article seems to work… That is not “Quick and Dirty”, but will do the job :-)
@Hamish,
Yes, I know about the performance problems… but this is just a quickie… Not intended to be a permanent solution.
@mirabilos,
You are probably right… :-)
With
sudo pppd updetach noauth pty “slirp ppp” 10.0.0.1:10.0.0.2
you only need root priviledges on the client machine.
Olha só o que vi no BR-Linux.
Rapidinho com openvpn! (Bem, não tão rápido como o seu, mas…)
@Timo Juhani Lindfors,
I believe you meant
right? And remote_user still have to login with a passwordless key. Good Thing™ that it don’t need root access, though. I had forgot about slirp. Thanks for the tip.