12

I use dynamic SSH port-forwarding (-D) and normal SSH port-forwarding (-L or -R) for many different things, including adding a layer of encryption to my wireless web traffic. The command I use normally looks something like this:

ssh -l raam -D 9000 my-linux-server.com

After starting the tunnel, I configure my web browser to use a SOCKS v5 Proxy of 127.0.0.1 with port 9000. Now all traffic in my browser (except DNS) is transmitted through the SSH tunnel.

When I'm ready to close the tunnel (when I'm taking my laptop to another location, for example), I simply type "logout". However, the SSH session hangs and I have to press CTRL+c to get my local prompt back.

Why does this happen and how can I prevent it?

(My guess is that the connections I opened through the tunnel remain open and my local SSH client is waiting for them to close before giving me my prompt back. If this is the case, how can I force all those connections to close when I'm ready to logout?)

Improve this question

4 Answers 4

Reset to default
22

As you expected, this happens because SSH won't exit if there are outstanding connections going through the tunnel.

If you exit your browser (and all other programs that are going through the port 9000 tunnel) then SSH should exit.

The SSH man page says:

The session terminates when the command or shell on the remote machine exits and all X11 and TCP connections have been closed.

And I don't see any options to change that behavior, so I suspect there's nothing you can do.

Improve this answer
0
7

You can background SSH doing:

<enter>~&
Improve this answer
2
  • 1
    or even better, use ssh -f Commented Jun 5, 2009 at 18:38
  • @Thomas That won't work since the ssh connection is being used interactively until loging out. But in some cases it may be useful to keep port forwardings and interactive usage on separate ssh connections. Commented Sep 6, 2015 at 14:18
4

As stated in the comment you can create a tunnel only connection using -f, but you'll still have the issue of the connection not terminating until everything using the tunnel has exited. You can use the ~# option (escape sequence and a 'pound') to list the forwarded connections you have open on a given connection before you logout.

Improve this answer
2
  • 1
    I hadn't heard of ~# to list the connections. That's really helpful. Thanks! Commented Jun 5, 2009 at 21:24
  • Type <Enter>~? for help - there are more escape sequences out there. Commented Jul 8, 2009 at 20:02
1

Instead of typing exit which closes your shell but leaves the session open until the tunnels are disconnected from, you can actually ask your shell to close the session directly which kills the tunnels and shell.

kill $PPID

Your interactive shell's parent process is the sshd process handling your session.

This also works with commands so they wont hang;

ssh -R 9000:localhost:9000 my-linux-server.com './scriptThatUsesRemotePort.sh; kill $PPID'

If you don't have $PPID environment variable you can use kill `ps --no-headers -eo ppid -fp $$`

Improve this answer

You must log in to answer this question.

Start asking to get answers

Find the answer to your question by asking.

Ask question

Explore related questions

See similar questions with these tags.