Enable an option to automatically redirect outgoing traffic through the tunnel via IPTables
Affects | Status | Importance | Assigned to | Milestone | |
---|---|---|---|---|---|
Tunnel Manager |
Incomplete
|
Wishlist
|
Unassigned |
Bug Description
This may be out of scope for the project, but Tunnel Manager comes close to implementing many of the features needed for a project I've been thinking about doing. The following describes what I had in mind:
If I set up the ssh tunnel like this:
ssh -L 12345:localhost
And then use iptables to redirect the traffic like this:
iptables -t nat -A OUTPUT -p tcp --dport 5900 -d myhomemachine -m owner --uid-owner myusername -j REDIRECT --to-ports 12345
I can then access my VNC server on my home machine from my work machine (and only from processes owned by me) as if it is completely public. Wrap all this inside a GUI using random ports, and I could enable or disable the functionality with a button-toggle on the GNOME panel.
Since Tunnel Manager does most of the SSH side of things, I'd like to use it as the base and add on the redirection part. If I ever get around to doing this (which isn't guaranteed...), would you like me to send you the patches? Or is this all out of scope for your intentions and I should just create my own fork? Either way is fine with me.
John
This sounds like something that would be handled nicely by Bug 283347 (Add support for start/stop commands). I'll leave this bug open for now, but I think the more generalized solution described in the other bug is probably the way to go. Please take a look at the other bug an tell me your thoughts.