I have a requirement for a script to test certificate expiry on particular ports on a server. However the server is located in a DMZ and is accessable only via SSH. I thought about opening the ports up, but there are roughly about 100 of these servers, the over head is far too much, also the script uses specific SSLEAY and various other perl modules to work. I'm looking to have a central reporting server that basically periodicaly logs on via SSH, creates a SSH Tunnel, Perl script executes and examines specific ports on the destination server out put is pushed into a file. I know I can get around the SSH logon stuff with creating certificates on the client and destination servers, but how can I tunnel the ports in a script and keep them open to allow another script to execute on the client server?
I have the Perl script etc.., I only want to know how the SSH stuff will work
More info if required.
And Thanks to all in advance.