xiringuito is an SSH-based VPN solution that creates secure network tunnels without traditional VPN servers or complex configuration.
SSH-based "VPN for poors"
This tool is designed for users who need quick and easy VPN-like access to remote networks via SSH without setting up dedicated VPN infrastructure. It is ideal for system administrators, developers, or security professionals who want to securely route traffic through an SSH server to access private networks or perform network monitoring and testing.
Requires local and remote sudo privileges to configure network interfaces and routing. On Mac OS X, TunTap must be installed for tun/tap device support. Passwordless sudo on the SSH server is recommended to avoid entering sudo password on each connection and to enable background connection features with xaval. While suitable for testing and lightweight VPN use, it is not recommended for production tunneling of low-level IP protocols.
git clone https://github.com/ivanilves/xiringuito.git
cd xiringuito
Optionally install globally with sudo make install
On Mac, install TunTap for Mac OS X from http://tuntaposx.sourceforge.net/./xiringuito user@your.ssh.server 10.0.0.0/8 192.168.0.0/16
Run xiringuito to create an SSH-based VPN tunnel routing traffic to specified network ranges
xiringuito user@your.ssh.server 10.0.0.0/8 192.168.0.0/16
Run xiringuito globally after installation to establish the VPN tunnel
sudo make install
Install xiringuito globally for system-wide access
xaval toggle
Use the xaval connection manager to toggle background connection mode (requires passwordless sudo on server)