Webseite

I developed this bunch of scripts since ssh was able to establish Layer3-tunnels. In my oppinion ssh is more flexible for a RoadWarrior-Tunnel because of using TCP. I know about the problems tunneling TCP through TCP (TCP-Resend).
I also know that you need to establish the connection using a user with UID=0. I managed to create a user which is only able to establish a tunnel. Nothing else. So during nearly 2 years of practical use, even with my parent-proxy through the tunnel, i never discovered an issue with this.
The only issue i had was that the ping, used for testing the tunnel alive, failed during high load of the tunnel. I fixed this by using trafic-shaping. The script was found somewhere in the Internet while research for shaping. I modified it to some of my practices. The important thing in this script is to secure "ACK" has greatest priority. Everything else is not nessesary.

System:
The scripts where tested under Debian 6.0.1 (squeeze) with GNU bash, Version 4.1.5(1)-release (x86_64-pc-linux-gnu).
So feel free to take these scripts, use or modify it to your needs and have fun.

Install:
The files in folder "initiator" belong to the host that establishes the ssh connection. Everything in "initiator/etc/" exept ssh-net-tunnel.conf is individual. If you need it, use it, if not leave it. File "ssh-net-tunnel.conf" must be edited to your needs.
The file in folder "responder" must be copied to the remote host with the ssh-server. This can be done using "/usr/local/bin/ssh-net-tunnel" with the parameter "copy" after the tunnelname for easier update on changes to the script.
Download scriptpackage