3

I am trying to use sshuttle to disguise my IP address, however without success. I use the command

sshuttle -r <user>@<remote_server> 0.0.0.0/0 -e "ssh -i /home/felix/.ssh/id_rsa" --exclude <remote_server> --dns -v

If I check my IP at https://www.iplocation.net/ is shows the server IP. However, if I use https://www.whatismyip.com/, they still show my computer IP and IP location.

How is this possible? And what can I do to really disguise my IP robustly?

There are no error messages in the terminal where sshuttle runs, not even when I use more -v.

Giacomo1968
  • 53,069
  • 19
  • 162
  • 212
Felix
  • 225
  • 2
  • 7

2 Answers2

2

I found the solution: By default, sshuttle only tunnels IPv4 requests. www.whatismyip.com, however, evaluates the IPv6 address. To also tunnel IPv6 traffic, I had to change the command to

sshuttle -r <user>@<server> 0.0.0.0/0 -e "ssh -i /home/felix/.ssh/id_rsa" --exclude <server> -v --method tproxy

It only worked after I compiled a huge list of modules into my kernel, not sure which of them were really required. Definitely the socket modules for IPv6.

Giacomo1968
  • 53,069
  • 19
  • 162
  • 212
Felix
  • 225
  • 2
  • 7
1

For me it worked, if you pass all connections as subnets, i.e.:

sshuttle -r <user>@<server> 0/0

0/0 also includes IPv6.

Hendrik Schro
  • 11
  • 1
  • 1
    That is a strange quirk in sshuttle's configuration. Even if it's a /0, normally an IPv4 mask never becomes an IPv6 mask. – u1686_grawity Oct 28 '19 at 09:19