Ssh – rsync over ssh tunnel

rsyncsshssh-tunneling

----------         /|                      /|             ------------
|  Home  |        | |                     | |             |    Work   |
|        |--------| |---------------------| |-------------|           |
|ssh-serv|   Firewall:Port-22=open     Firewall           |           |
----------        | |                     | |             ------------
                  |/                      |/

Here is the scenario for the above picture:

A worker has access at his Work machine and has also set up a Home ssh server.
The worker wants to access his Work machine from his PC@Home but the policy of the company restricts access via the Firewall@Work, but allows him to connect via reverse ssh tunnel. So the worker gives the following command from his workstation@Work :

ssh -fN -R 19999:localhost:22 Home-user@Home

Now from his PC@Home he is able to give the following command and connect to the ssh server of his workstation@Work:

ssh -v Work-user@localhost -p 19999

Is it possible for the worker to use rsync to copy a directory from his PC@Home to his workstation@Work using the existing tunnel?

Best Answer

I think the feature you're looking for is called connection sharing. Add this to your $HOME/.ssh/config file:

ControlMaster auto
ControlPath /tmp/ssh_mux_%h_%p_%r

excerpt #1 from SSH Can Do That? Productivity Tips for Working with Remote Servers

Fortunately OpenSSH has a feature which makes it much snappier to get another terminal on a server you’re already connected to: connection sharing.

excerpt #2

Shared connections aren’t just a boon with multiple terminal windows; they also make copying files to and from remote servers a breeze. If you SSH to a server and then use the scp command to copy a file to it, scp will make use of your existing SSH connection ‒ ... Connections are also shared with rsync, git, and any other command which uses SSH for connection.

References

SSH Can Do That? Productivity Tips for Working with Remote Servers

Related Solutions

Ssh – tunneling VNC/rdesktop over ssh

I would prefer to setup a vpn (openvpn for example) with server on your machine and client on your friend's machine. When he wants you to connect, he opens the vpn (no login involved on your machine) and you open your remote desktop client to his machine's IP (at least with openvpn, you can assign a "fixed" IP to his machine so you can save it, not needing to look at it everytime).

This way you have no login to your machine and you only access his machine when he opens the VPN. On the other side, you can shutdown the server when you don't want him to connect to your machine. Anyways, if you don't give him a user on your machine (or a user with only the access you want), he won't be able to to much there.

And this way, you can do it with more friends easily if needed as they only need to install the vpn client.

SSH tunnel hanging

You can try setting the ClientAliveInterval and ClientAliveCountMax variables in your sshd config file to values that suit you.

From the manual:

ClientAliveInterval 

Sets a timeout interval in seconds after which if no data has been received
from the client, secshd will send a message through the encrypted channel 
to request a response from the client.
The default is 0, indicating that these messages will not be sent to the 
client. This option applies to protocol version 2 only.

Best Answer

References

Related Solutions

Ssh – tunneling VNC/rdesktop over ssh

SSH tunnel hanging

Related Question