Stuck behind restrictive firewalls or deep packet inspection? This project lets you tunnel SSH connections through WebSockets, bypassing most limitations on standard SSH ports.
While receiving treatment in the hospital, I encountered a common problem: restricted internet access with only hospital Wi-Fi available, and a firewall blocking SSH (even on port 443). They were also using Deep Packet Inspection, preventing SSH traffic over non-standard ports.
So, I built this tool. Simply run the provided Docker Compose, and you’ll be able to tunnel SSH through WebSockets—no more blocked SSH sessions!
-
On the server run this command (or use the docker compose file and execute
docker compose up -d):docker run -d --name gost \ -p 80:8080 \ -p 443:8443 \ ginuerzh/gost:2.11.5 \ -L=wss://:8443 \ -L=ws://:8080 \ -F=forward+tcp://172.17.0.1:22
-
On the client, execute:
gost -L "tcp://:2222" -F "wss://<YOUR_REMOTE_IP>:443"
-
Connect via SSH in another terminal:
ssh -p 2222 root@localhost
And that’s it—you're connected! 🎉
Enjoy secure and flexible SSH, even in restricted environments!