ci/woodpecker/push/woodpecker Pipeline was successfulDetails
- Allow committing compiled server/client binaries; add systemd units
(tunnel-client.service, tunnel-server.service) and env examples.
- README: install from git.nixc.us HTTPS raw (curl binary + unit from
raw/branch/main); document multiple tunnels (one unit/env per tunnel).
- Keys: do not recycle host or shared keys; use a dedicated ed25519 per
tunnel/host; central server must have that public key in authorized_keys.
Co-authored-by: Cursor <cursoragent@cursor.com>
ci/woodpecker/push/woodpecker Pipeline was successfulDetails
docker-compose.test.yml spins up an nginx + tunnel-client pointing at
testrst.nixc.us with basicauth test:test for end-to-end validation.
Co-authored-by: Cursor <cursoragent@cursor.com>
Local dev override mounts real SSH keys for testing the tunnel
server and client without needing Swarm secrets.
Co-authored-by: Cursor <cursoragent@cursor.com>
Go binary pair (server + client) that establishes reverse SSH tunnels
and dynamically registers Traefik routes by SSHing into the ingress
host to write file-provider config. Clients need only a private key,
server address, domain, and local port as envvars.
Co-authored-by: Cursor <cursoragent@cursor.com>
Leopere