yojimbo

Sometimes I want to access a resource that's been GeoIP blocked, and I'm not in the right address range. But I have ssh access to a server that is in the right range ...

But that server doesn't run a proxy open to the world, and I'm not going to want to install extra software in there anyway, and it doesn't have a build environment for users ...

In comes sshuttle, have a look at the docs on https://sshuttle.readthedocs.io/en/stable/index.html ...

Overview As far as I know, sshuttle is the only program that solves the following common case: Your client machine (or router) is Linux, MacOS, FreeBSD, OpenBSD or pfSense. You have access to a remote network via ssh. You don’t necessarily have admin access on the remote network. The remote network has no VPN, or only stupid/complex VPN protocols (IPsec, PPTP, etc). Or maybe you are the admin and you just got frustrated with the awful state of VPN tools. You don’t want to create an ssh port forward for every single host/port on the remote network. You hate openssh’s port forwarding because it’s randomly slow and/or stupid. You can’t use openssh’s PermitTunnel feature because it’s disabled by default on openssh servers; plus it does TCP-over-TCP, which has terrible performance (see below).

I have a macOS client machine (sshuttle is available in Homebrew at least), and a remote unix box. I want to “just make this one thing work” and then switch it off ...

• Access website resource, receive “This content is not available in your location”.
• sudo sshuttle -e 'ssh -i /Users/jim/.ssh/id_rsa' -r jim@remote.server 0/0
• Refresh page
• Profit??