Maybe someone here knows: is it possible to make an SSH connection peer to peer with NAT traversal? I spent the weekend learning about UDP hole punching but SSH cannot use UDP transport. I don't want to use OpenVPN or WireGuard because I just want one specific port forwarded, not expose the whole machine. Just the TCP tunnel, no routes or iptables. It's easy to do with a public SSH jump host, but can it be done directly?

@rune Yeah I saw pwnat mentioned a couple times, but it was always followed by comments that it doesn't work. It seems to be an extremely hacky proof-of-concept.

@chebra Sounds about right.

I don't think UDP hole punching is implemented much outside very niche use cases where they can control what to do when it goes wrong.

Sign in to participate in the conversation

The social network of the future: No ads, no corporate surveillance, ethical design, and decentralization! Own your data with Mastodon!