ssh_tunnel
ssh -N -f -L 5000:localhost:3306 [email protected]-N 不启动shell
-f 后台执行
-T不分配TTY
-D动态转发、 -L本地转发 、 -R 远程转发
SSH 端口转发自然需要 SSH 连接,而 SSH 连接是有方向的,从 SSH Client 到 SSH Server 。而我们的应用也是有方向的,比如需要连接 Server 时 ,Server 自然就是 Server 端,我们应用连接的方向也是从应用的 Client 端连接到应用的 Server 端。如果这两个连接的方向一致,那我们就说它是本地转发。而如果两个方向不一致,我们就说它是远程转发。本地转发与远程转发
- README
1
autossh -M 0 -o "ServerAliveInterval 30" -o "ServerAliveCountMax 3" -L 5000:localhost:3306 [email protected]
- systemctl
1
2
3
4
5
6
7
8
9
10
11workspace:~$ cat autossh-mysql-tunnel.service
[Unit]
Description=AutoSSH tunnel service everythingcli MySQL on local port 5000
After=network.target
[Service]
Environment="AUTOSSH_GATETIME=0"
ExecStart=/usr/bin/autossh -M 0 -o "ServerAliveInterval 30" -o "ServerAliveCountMax 3" -NL 5000:localhost:3306 [email protected] -p 22
[Install]
WantedBy=multi-user.target - 测试ssh_tunnel稳定性
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40workspace:~$ cat ssh_tunnel.sh
#!/bin/bash
#kebyn
#[email protected]
export PATH=$PATH:/bin:/sbin:/usr/bin:/usr/sbin
case $1 in
start | run)
#autossh
/usr/bin/autossh -i /home/qzs/.ssh/id_rsa -M 0 -o "ServerAliveInterval 60" -o "ServerAliveCountMax 10" -N -L 4096:localhost:80 [email protected] &
sleep 3
test_connect(){
while true; do
#test_connect
web_code=$(curl --connect-timeout 1 127.0.0.1:4096 -i 2>/dev/null |head -1 |perl -lane 'print $F[1]')
if [ "$web_code" != "200" ] ;then
echo "$(date +%Y/%m/%d_%H:%M:%S)" >> ssh_tunnel_erro.log
sleep 1
else
echo "$(date +%Y/%m/%d_%H:%M:%S)" > ssh_tunnel_success.log
sleep 1
fi
done
}
test_connect &
;;
stop)
if [ "$(/usr/bin/pgrep autossh)" ] ;then
kill $(/usr/bin/pgrep autossh)
fi
if [ "$(/usr/bin/pgrep ssh_tunnel)" ] ;then
kill $(/usr/bin/pgrep ssh_tunnel)
fi
;;
*)
echo 'Usage: ./ssh_tunnel.sh [ OPTIONS ] { start | stop | run }'
;;
esac