SSH tunnel endpoint?

Question

Greetings all, 
&nbsp;  
&nbsp; Recall that sshd allows tcp forwarding.  Can I thus use my LTM 9.x as an endpoint and forward to a pool over some other TCP service?  Sort of like using the ssl client profile to forward to http? 
&nbsp;  
&nbsp; Is it as easy as I think it is? 
&nbsp;  
&nbsp; Just curious. 
&nbsp;  
&nbsp; Thanks, 
&nbsp; Mike

james_quinby_46 · Answer

That's an interesting idea, worth mulling over a little. 
&nbsp;  
&nbsp; sshd doesn't actually run on the LTM*, so I think you'd need to have a virtual server configured with a pool that contains at least one sshd running. That's where ssh would terminate, so that's where port forwarding would happen. 
&nbsp;  
&nbsp; * - well, it does, but for administrative access. In practice, it's usually locked down to certain vlans during the initial configuration. I'm not sure that using the onboard sshd for port forwarding is A Good Thing.

Forum Discussion

SSH tunnel endpoint?

1 Reply

F5 Academy at AppWorld 2026

Introducing the F5 AI Assistant for BIG-IP

Recent Discussions

Connection Rest f5

Kubernetes cert-manager + LetsEncrypt + F5

The GSLB pool is providing an incorrect IP to end users

Unable to ping from some self ip on Velos

Not seeing the latest F5OS-A when running Journeys

Related Content

IPSec Tunnel Endpoint iApp

SSH Brute Force Protection with SSH Proxy

Apache Airflow Unsafe API Endpoint

List of F5 iControl REST API Endpoints

Cisco ACI Endpoint Learning with a BIG-IP HA Failover

ABOUT DEVCENTRAL

RESOURCES

SUPPORT

PARTNERS