sshuttle

mirror of https://github.com/sshuttle/sshuttle.git synced 2025-05-29 14:23:58 +02:00

Go to file

João Vieira ca41026c89 Changes pf exclusion rules precedence

Before this change, in pf, exclusions used a pass out quick which gave
them higher precedence than any other rule independent of subnet width.
As reported in #265 this causes exclusion from one instance of sshuttle
to also take effect on other instances because quick aborts the
evaluation of rules across all anchors.

This commit changes the precedence of rules so quick can now be
dropped. The new order is defined by the following rule, from
subnet_weight:

"We need to go from smaller, more specific, port ranges, to larger,
less-specific, port ranges. At each level, we order by subnet
width, from most-specific subnets (largest swidth) to
least-specific. On ties, excludes come first."

2018-11-03 12:24:32 +11:00

docs

works on ChromeOS with Crostini VM (#262 )

2018-08-25 10:30:45 +10:00

sshuttle

Changes pf exclusion rules precedence

2018-11-03 12:24:32 +11:00

tests

Changes pf exclusion rules precedence

2018-11-03 12:24:32 +11:00

.gitignore

Add entries to .gitignore

2018-03-16 18:10:09 +11:00

.prospector.yml

Fixes some style issues and minor bugs

2017-11-13 11:58:43 +11:00

.travis.yml

Remove Python 2.6 from automatic tests

2018-03-16 18:34:15 +11:00

bandit.yml

updated bandit config

2018-10-17 20:52:04 +11:00

CHANGES.rst

Prepare for 0.78.4

2018-04-02 14:52:22 +10:00

LICENSE

Fix LGPL2 license.

2016-03-07 10:03:22 +11:00

MANIFEST.in

Fix error in requirements.rst

2017-07-09 09:08:48 +10:00

README.rst

Update README.rst

2018-06-22 16:02:11 +10:00

requirements-tests.txt

Added coverage report to tests

2018-10-17 20:54:28 +11:00

requirements.txt

Pin version in requirements.txt

2017-07-09 09:08:48 +10:00

run

turn off debugging

2017-10-23 06:58:21 +11:00

setup.cfg

Added coverage report to tests

2018-10-17 20:54:28 +11:00

setup.py

Added coverage report to tests

2018-10-17 20:54:28 +11:00

tox.ini

Remove Python 2.6 from automatic tests

2018-03-16 18:34:15 +11:00

README.rst

sshuttle: where transparent proxy meets VPN meets ssh
=====================================================

As far as I know, sshuttle is the only program that solves the following
common case:

- Your client machine (or router) is Linux, FreeBSD, or MacOS.

- You have access to a remote network via ssh.

- You don't necessarily have admin access on the remote network.

- The remote network has no VPN, or only stupid/complex VPN
  protocols (IPsec, PPTP, etc). Or maybe you *are* the
  admin and you just got frustrated with the awful state of
  VPN tools.

- You don't want to create an ssh port forward for every
  single host/port on the remote network.

- You hate openssh's port forwarding because it's randomly
  slow and/or stupid.

- You can't use openssh's PermitTunnel feature because
  it's disabled by default on openssh servers; plus it does
  TCP-over-TCP, which has terrible performance (see below).


Obtaining sshuttle
------------------

- Debian stretch or later::

      apt-get install sshuttle

- From PyPI::

      sudo pip install sshuttle

- Clone::

      git clone https://github.com/sshuttle/sshuttle.git
      cd sshuttle
      sudo ./setup.py install

It is also possible to install into a virtualenv as a non-root user.

- From PyPI::

      virtualenv -p python3 /tmp/sshuttle
      . /tmp/sshuttle/bin/activate
      pip install sshuttle

- Clone::

      virtualenv -p python3 /tmp/sshuttle
      . /tmp/sshuttle/bin/activate
      git clone https://github.com/sshuttle/sshuttle.git
      cd sshuttle
      ./setup.py install

- Homebrew::

      brew install sshuttle


Documentation
-------------
The documentation for the stable version is available at:
https://sshuttle.readthedocs.org/

The documentation for the latest development version is available at:
https://sshuttle.readthedocs.org/en/latest/