frontpage.
newsnewestaskshowjobs

Open Source @Github

fp.

Open in hackernews

A Practical Guide to SSH Tunnels: Local and Remote Port Forwarding

https://labs.iximiuz.com/tutorials/ssh-tunnels
82•signa11•4d ago

Comments

teddyh•1h ago
It’s amazing what you can learn by reading the manual.
felooboolooomba•1h ago
It is, because manuals are often not the best way to learn things. Most software manuals are reference manuals. SSH man page isn't too bad. I learned most of my SSH knowledge from it, but I'm not sure it's the best way to do it.
matltc•29m ago
For me, the best way to learn a tool is for a quick example or two showing its utility, then practicing with those, reading the man as needed on specific flags. Google or bot ”how do x" ? Repeat : done

Some pages have a nice up-front synopsis of flags, others put them in a wall of text. Browsing the former can supplant Google, /\b-x while paging is helpful for the latter.

trollbridge•1h ago
When I see one of these with obvious AI tells at the top (sentences lacking a subject or verb), I ask myself:

Can’t I just open up a harness and prompt “Teach me how to do X?”

GL26•1h ago
I personally do this, ask claude code to teach me about concepts I don't know about when it codes something, and only then I accept what it suggests to me
lfx•1h ago
I do this all the time, I have a skill/gem with instructions on how I want to receive info, how to format and so on. Really helps to go fast to get the point.
Oxodao•44m ago
Could you share it? I'd be interested to get idea to make my own
chasil•1h ago
The article mentions bastions, but no jumphosting?

  ssh -J user1@bastion1,user2@bastion2 targetuser@targethost
Edit: Jumphosting was introduced in OpenSSH 7.3 2016-08-01.

https://www.openssh.org/releasenotes.html

dspillett•1h ago
It is surprising how many times I see this content (this version might be marked “Published: Jun 19, 2026” but I've definitely seen those exact diagrams before, starting at least a few years ago, and the same content around them in many tutorials before that) without it being updated to mention jump-hosts.

Support was added to OpenSSH about a decade ago? Even on a low moving Linux distro like Debian/LTS everyone should have support by now.

riobard•1h ago
There's a asymmetry here that "-R" works both for reverse static and dynamic (using SOCKS protocol) forwarding, but "-D" is required for dynamic forwarding which "-L" cannot do.

Why is that?

hylaride•4m ago
It's historical. Some older flags could be easily extended for dynamic port support and others could not.
felooboolooomba•1h ago
As a sysadmin, one of your biggest ROI is learning the ins and outs of SSH.
hylaride•1h ago
Learning how SSH port forwarding is great as a pseudo-vpn for everything from GUI-client database access to (in physical infra) access to web-admin tools for appliances.

The socks proxy support can also deal with bad web filtering and privacy issues on public wifi networks (though nowadays if you're ssh'ing to a cloud IP, you'll get lots of "bot" restrictions).

segphault•1h ago
Or you could just install something like Tailscale and never have to think about it again.
buredoranna•1h ago
I'll mention it here, because I learned about it here.

"~C" will drop you into the SSH command line, allowing you to, among other things, effect port forwarding

  -L8080:localhost:443
Learning that "~C" exists, and what you can do with it, has supercharged my use of SSH tunnels, which were already awesome on their own.

But for some reason this has been disabled by default in more recent ssh configurations... to ensure its available

  -o EnableEscapeCommandline=yes
or, in your ~/.ssh/config

  EnableEscapeCommandline yes
(edit: formatting)
telotortium•56m ago
Important to note that `~` SSH commands work only right after you press Enter - it doesn’t trigger everywhere you press `~`.

Also EnableEscapeCommandline fortunately only affects `~C` - the all-important `~.` to kill a hung SSH session still works with it disabled.

matltc•36m ago
Very refreshing to see a utilitarian series such as this. Disappointing that the latest ai drama gets 20x more discussion and visibility on this site
wbadart•18m ago
I never pass up an opportunity to recommend the Cyber Plumber's Handbook: https://github.com/opsdisk/the_cyber_plumbers_handbook

Goes over similar content as TFA, in perhaps a little more depth. Indispensable sysadmin knowledge.

bheadmaster•12m ago
If you have many different remote devices behind NATs or firewalls, a cool trick to access them all via EC2 server (or such) is to setup Remote Forwarding via UNIX socket on the server side, to devices' port 22. Preferably, UNIX socket filenames should start with a common prefix, so an SSH config can be written that will use ssh+socat in a ProxyCommand to establish the connection.

It's amazing how lightweight this method actually is. I have managed to connect hundreds of devices using a single EC2 nano instance.

Bender•3m ago
Should add how to bypass MFA using phishing and SSH Multiplexing to the article.

We're making Bunny DNS free: because a faster internet won't build itself

https://bunny.net/blog/were-making-bunny-dns-free/
555•dabinat•6h ago•185 comments

RubyLLM: A single, beautiful Ruby framework for all major AI providers

https://rubyllm.com/
34•doener•46m ago•8 comments

Show HN: Nub – A Bun-like all-in-one toolkit for Node.js

https://github.com/nubjs/nub
29•colinmcd•1h ago•8 comments

Krea 2 Technical Report

https://www.krea.ai/blog/krea-2-technical-report
113•mattnewton•23h ago•9 comments

Founding a company in Germany: €9600, 152 days and I still can't send an invoice

https://paolino.me/founding-a-company-in-germany/
321•earcar•2h ago•373 comments

A Practical Guide to SSH Tunnels: Local and Remote Port Forwarding

https://labs.iximiuz.com/tutorials/ssh-tunnels
84•signa11•4d ago•20 comments

Running Windows Games on a Hobby OS with Wine

https://astral-os.org/posts/2026/04/03/wine-on-astral.html
15•avaliosdev•49m ago•4 comments

Haystack: Open-Source AI Framework for Production Ready Agents, RAG

https://haystack.deepset.ai/
43•doener•4h ago•16 comments

Statistics that live in your SQL

https://kolistat.com/blog/the-stats-duck-v0-6-0/
96•caerbannogwhite•2d ago•14 comments

Show HN: Pure Effect – Reproduce production bugs on your laptop without a DB

https://pure-effect.org
15•tie-in•2d ago•1 comments

Raspberry Pi Pico W as USB Wi-Fi Adapter

https://gitlab.com/baiyibai/pico-usb-wifi
211•byb•12h ago•98 comments

Vulnerability reports are not special anymore

https://words.filippo.io/vuln-reports/
352•goranmoomin•15h ago•199 comments

In memory of the man who put red and green squiggles under words

https://devblogs.microsoft.com/oldnewthing/20260622-00/?p=112451
538•saikatsg•21h ago•94 comments

Jerry's Map

http://www.jerrysmap.com/the-map
548•turtleyacht•20h ago•59 comments

Venezuela reveals $240B in debt it cannot pay (~$100B more than expected)

https://www.euronews.com/business/2026/06/24/venezuela-plans-biggest-debt-restructuring-in-histor...
11•cs702•22m ago•2 comments

François Englert (1932 – 2026)

https://home.cern/francois-englert-1932-2026/
41•toomuchtodo•3d ago•3 comments

FUTO Swipe – A new swipe typing model

https://swipe.futo.tech/
638•futohq•21h ago•227 comments

Stealing Is a Skill

https://ben-mini.com/2026/stealing-is-a-skill
70•bewal416•2h ago•51 comments

Minimus container images are now free

https://images.minimus.io/
90•dimastopel•3h ago•50 comments

Ashby (YC W19) Is Hiring EMEA Engineers Who Can Design

https://www.ashbyhq.com/careers?ashby_jid=87b96eef-edc1-4de4-adb6-d460126d02f8&utm_source=hn
1•abhikp•8h ago

Qwen-AgentWorld: Language World Models for General Agents

https://arxiv.org/abs/2606.24597
172•ilreb•13h ago•45 comments

"Fix" MacBook Neo Cursor Lag: Record 1 Pixel of the Screen Every 10 Seconds

https://gist.github.com/retroplasma/ec21767d0a8380c7ea9c2fbee1c7d6bf
170•retroplasma•12h ago•71 comments

Printing Gaussian Splats

https://www.patreon.com/DanyBittel/posts/printing-splats-161333338
353•ilnmtlbnm•3d ago•43 comments

Vector Graphics in Lil

http://beyondloom.com/blog/vectorgraphics.html
41•RodgerTheGreat•1d ago•2 comments

Rhombus Language 1.0

https://blog.racket-lang.org/2026/06/rhombus-v1.0.html
215•Decabytes•1d ago•75 comments

Too many R packages: CRAN is inundated with submissions

https://rworks.dev/posts/too-many-R-packages/
64•ionychal•4h ago•51 comments

Cointegration and Long-Horizon Forecasting (2025)

https://www.philadelphiafed.org/the-economy/cointegration-and-long-horizon-forecasting
10•bryanrasmussen•3d ago•1 comments

Swift Package Index joins Apple

https://swiftpackageindex.com/blog/swift-package-index-joins-apple
227•JDevlieghere•21h ago•76 comments

The worthlessness of Vitamin D is mildly exaggerated

https://dynomight.net/vitamin-d/
359•surprisetalk•22h ago•271 comments

Reid Hoffman says SpaceX 'not an AI company', xAI 'complete train wreck'

https://fortune.com/2026/06/24/reid-hoffman-spacex-musk-openai-anthropic-gen-z-mistake/
171•1vuio0pswjnm7•3h ago•187 comments