Yes, it is a tunnel but it can also foward every port to the remote host.
This will mask your IP to the remote host's, for every port, as well as prevent dns leaking.
(replace root@IP with your VPS / Remote host's IP)
./sshuttle --dns --vvr root@IP 0/0 -vv
Authenticate credentials to the remote host, and it begins forwarding all your traffic to the remote host automatically.
Do an IP lookup and it will be the Remote Host's.
This works for all ports.
I don't care how ‘secure’ your systems are. If you have stupid people running them and using them, you can't win.
For those that know