permanent tunnels text

nemanjam · nemanjam · commit 3ccd6dc5abe1 · 2025-04-20T15:42:09.000+02:00
diff --git a/src/content/post/2025/04-20-ssh-tunnel-docker/index.mdx b/src/content/post/2025/04-20-ssh-tunnel-docker/index.mdx
@@ -6,8 +6,8 @@ publishDate: 2025-04-20
 heroImage: '../../../../content/post/2025/04-20-ssh-tunnel-docker/_images/ssh-tunnel-architecture-16-9.png'
 heroAlt: SSH tunnel Docker architecture diagram
 tags:
-  - docker
   - devops
+  - docker
 category: tutorials
 toc: true
 draft: true
@@ -366,6 +366,8 @@ networks:
 
 If you have a really big number of services to tunnel you might want to use a VPN to access all ports by default, but thats rarely the case.
 
+Another point to make is that SSH tunnel technique is most suitable for temporary exposing services for demo purposes. For permanent tunnels you would need to add `autossh` to keep connection alive, but there are a better tools for permanent tunnels, like [rapiz1/rathole](https://github.com/rapiz1/rathole) or [fatedier/frp](https://github.com/fatedier/frp).
+
 ## Open firewall on VPS
 
 For the main SSH connection you will need to open a port in your VPS firewall, port `1080` in this example. Additionally, if you want to access tunnels directly via port in the browser without Traefik, you will need to open those ports too. Be mindful not to open to many unneeded ports as every new opened port increases the attack surface.
