How to use pfsense as SSH client

accidentallyadmin · Jan 17, 2024, 5:32 AM

Hello,

Is it possible to use pfsense as SSH client to outside network/router to create an SSH tunnel? Bear in mind that the tunnel is not for general internet access but for certain services on external network only. I'm trying to set up a secure SSH tunnel so the clients on the LAN side will be re-routed through this SSH tunnel without the need to set it up on each client.
Hope I'm making any sense there.

Gertjan · Jan 17, 2024, 7:06 AM

@accidentallyadmin said in How to use pfsense as SSH client:

use pfsense as SSH client ....

I can :

......
 6) Halt system                       15) Restore recent configuration
 7) Ping host                         16) Restart PHP-FPM
 8) Shell

Enter an option: 8

Command history storage is enabled. Clear history with: history -c; history -S.
[23.09.1-RELEASE][root@pfSense.bhf.tld]/root: ssh
usage: ssh [-46AaCfGgKkMNnqsTtVvXxYy] [-B bind_interface] [-b bind_address]
           [-c cipher_spec] [-D [bind_address:]port] [-E log_file]
           [-e escape_char] [-F configfile] [-I pkcs11] [-i identity_file]
           [-J destination] [-L address] [-l login_name] [-m mac_spec]
           [-O ctl_cmd] [-o option] [-P tag] [-p port] [-Q query_option]
           [-R address] [-S ctl_path] [-W host:port] [-w local_tun[:remote_tun]]
           destination [command [argument ...]]

It has the ssh client (and server - as I'm using it to connect to it ).
Or I didn't understand the question.

stephenw10 · Jan 17, 2024, 2:43 PM

Hmm, policy routing traffic over an SSH tunnel would be a lot more complex though. There's no way to do that in the GUI.

accidentallyadmin · Jan 17, 2024, 4:08 PM

@Gertjan Thank you, I will try your approach and report back as soon as I can