How can I get list of open SSH tunnels?

Question

I'm using Mac OS X client connected to FreeBSD server. I'm trying to query open tunnels on the client.

score 14 · Answer 1 · answered Mar 11 '11 at 13:12

You can use lsof:

$ lsof -i tcp | grep ^ssh
ssh       2211 lcipriani    3r  IPv4  20825      0t0  TCP lcipriani-laptop.local:49164->docsuite.cefla.com:22 (ESTABLISHED)
ssh       2223 lcipriani    3r  IPv4  21945      0t0  TCP lcipriani-laptop.local:34471->gd-b-21.vps.redomino.com:22 (ESTABLISHED)
ssh       2640 lcipriani    3r  IPv4  37488      0t0  TCP lcipriani-laptop.local:45693->makeda-xen1.redomino.com:22 (ESTABLISHED)
ssh       5279 lcipriani    3r  IPv4 212324      0t0  TCP lcipriani-laptop.local:56491->67.227.82.162:22 (ESTABLISHED)
ssh       5279 lcipriani    4u  IPv6 210281      0t0  TCP lcipriani-laptop:10000 (LISTEN)
ssh       5279 lcipriani    5u  IPv4 210282      0t0  TCP localhost.localdomain:10000 (LISTEN)

The last line represent a tunnel (look at the state LISTEN).

score 4 · Answer 2 · answered Mar 11 '11 at 02:59

4

In Ubuntu, with iptables and iptstate installed and standard ssh port:

iptstate -D 22

each line will represent open tunnel.

answered Mar 11 '11 at 02:59

alexm

448

score 3 · Answer 3 · answered Mar 11 '11 at 03:44

3

If you're trying to find out what's using the tunnel(s) in a single ssh session, type ~# at the beginning of a line.

answered Mar 11 '11 at 03:44

geekosaur

7,285

score 2 · Answer 4 · answered Feb 05 '14 at 12:45

2

/sbin/ip tunnel list # replacement for the deprecated iptunnel command

answered Feb 05 '14 at 12:45

Lucas Cimon

263

user206746 · Answer 5 · 2014-01-24T23:52:53.923

0

Using lcipriani's answer in a script:

sessions=$(lsof -i tcp | grep "^ssh" | grep ESTABLISHED)
if [ -z "sessions" ]; then
    echo "no open ssh sessions"
else
    echo "ssh sessions are open"
fi

edited Jan 24 '14 at 23:52

answered Jan 24 '14 at 18:10

user206746

186

How can I get list of open SSH tunnels?

5 Answers5