I have different hosts that are connected over a cellular network (so NAT and dynamic IP). I have a central server that I want to use to use as gateway to access those machine SSH server for remote management. Current setup is to assign a port for each remote host in configuration phase, then those hosts will crate a reverse bridge over SSH, so from the server I can ssh to 127.0.0.1:port and i will bounce to the machine I want to manage.
Of course this has some serious security and management problem; I need to handle out those ID/port number, make sure are unique, and each host can also connect to all the other host since the server will happily bounce everything, and i don't want this (and that is also why a VPN would not be a solution AFAIK)
What would be a better solution? I can't even find a software to be able to manage multiple machine under those condition.
The only solution I see is to build a custom software to create this "mixer", but feels very error prone.
