Stdxput2dev is a project mainly written in Python, it's free.
create a linux tunnel device forwarding to and from stdout and stdin
This is a pretty neat Python tool that creates a Linux tunnel device. Everything that is read from stdin is sent to the tunnel device, and everything that is read from the tunnel is written to stdout. This allows for an el-cheapo VPN-like tunnel over ssh or possibly plain netcat for instance. For this, the tool is invoked on both sides of the intended tunnel.
usage: python stdxput2dev.py DEVICE LOCALIP REMOTEIPDEVICE is the name you want to give to the tunnel device (tun0 is a reasonable example) LOCALIP is the IP the DEVICE is to be configured with on the local side REMOTEIP is the IP the DEVICE is to be configured with for the remote endpoint
It goes without saying that LOCALIP is the remote side's REMOTEIP and the other way around. See example usage below if this is unclear.
If you decide to try this using netcat or CurveCP as a transport, be sure to set the MTU of the created interfaces to 1024. Like so:
ifconfig DEVICE mtu 1024Be sure to do this on both sides of the tunnel.
Copy the script to the remote host:
scp stdxput2dev.py [email protected]:.Create a named pipes
mkfifo /tmp/fromremote
mkfifo /tmp/toremoteAs root:
cat /tmp/fromremote | python stdxput2dev.py ssh0 10.0.0.1 10.0.0.2 > /tmp/toremoteFinally, (in a second shell) establish the tunnel on the remote side:
cat /tmp/toremote | ssh [email protected] "python stdxput2dev.py ssh0 10.0.0.2 10.0.0.1" > /tmp/fromremote Now test the tunnel by:
ping 10.0.0.2Or possibly:
ssh 10.0.0.2Obviously, you have to be root on the remote host. (Alternatively, you might do some magic with sudo.) Also, if you want to use the remote host for browsing the internet, you need to setup routing and masquerading, which is not within the scope of this README
I sometimes use the following contraction, which only uses a single shell window at a time:
mkfifo sshfifo; cat sshfifo | sudo python stdxput2dev.py ssh0 10.0.0.1 10.0.0.2 | ssh [email protected] "python /tmp/stdxput2dev.py ssh0 10.0.0.2 10.0.0.1" > sshfifoIf none of the above work for you, make sure you are
Note that you have to set the MTU to 1024, because this is the maximum payload in bytes which fit inside a single CurveCP packet
Here is how you might try to establish a CurveCP-based tunnel. Adapted from the CurveCP README:
curvecpmakekey serverkey
curvecpprintkey serverkey > serverkey.hex
curvecpserver server.machine.name serverkey 192.168.0.1 10000 31415926535897932384626433832795 curvecpmessage sh -c "python stdxput2dev.py ccp0 10.0.0.2 10.0.0.1"
ifconfig ccp0 mtu 1024In order for the last command to succeed, the client has to establish a session with the server first. (Before a connection is made, the Python script does not get executed and the specified device will not have been created yet.)
Copy serverkey.hex to the client machine and set up the client:
curvecpclient server.machine.name `cat serverkey.hex` 192.168.0.1 10000 31415926535897932384626433832795 curvecpmessage -c sh -c "python stxput2dev.py ccp0 10.0.0.1 10.0.0.2 <&6 >&7"
ifconfig ccp0 mtu 1024Take care that the "serverkey.hex" is accessible from the current directory. Note that it probably doesn't make much sense to run server and client on the same host, because if both endpoints are local, nothing will get tunneled.
Now test the tunnel from the client machine by:
ping 10.0.0.2 Or possibly:
ssh 10.0.0.2LOADS. I am serious, this is very immature software, by any reasonable standard