[ssh] Update bastion settings for personal and mmpay devstage
This commit is contained in:
@ -79,15 +79,7 @@ Host penobscotbaypress.com atlas.local
|
||||
#####
|
||||
|
||||
Host bastion.unbl.ink
|
||||
Port 333
|
||||
User powellc
|
||||
IdentityFile ~/.ssh/2022_h2_powellc
|
||||
|
||||
Host bastion.service
|
||||
Port 33
|
||||
|
||||
Host rss.lab.unbl.ink
|
||||
Port 333
|
||||
Port 44
|
||||
User powellc
|
||||
IdentityFile ~/.ssh/2022_h2_powellc
|
||||
|
||||
@ -98,18 +90,26 @@ Host *.local *.service
|
||||
AddKeysToAgent yes
|
||||
VerifyHostKeyDNS no
|
||||
|
||||
Host 67.205.184.201 life.unbl.ink
|
||||
User root
|
||||
IdentityFile ~/.ssh/1904_powellc
|
||||
Host bastion.service
|
||||
Port 33
|
||||
|
||||
## Jail hosts all need a jump
|
||||
#Match exec "onsubnet 192.168.40." host *.service
|
||||
# User root
|
||||
Match exec "onsubnet 192.168.40." host *.service
|
||||
User root
|
||||
IdentityFile ~/.ssh/jails
|
||||
Hostname %h
|
||||
|
||||
#Match exec "onsubnet --not 192.168.40." host *.service
|
||||
# User root
|
||||
# IdentityFile ~/.ssh/jails
|
||||
# Hostname %h
|
||||
# ProxyJump bastion.unbl.ink
|
||||
Match exec "onsubnet --not 192.168.40." host *.service
|
||||
User root
|
||||
IdentityFile ~/.ssh/jails
|
||||
Hostname %h
|
||||
ProxyJump bastion.unbl.ink
|
||||
|
||||
|
||||
Host mmpay-bastion.mmstage.dev
|
||||
ForwardAgent yes
|
||||
Hostname mmpay-bastion.mmstage.dev
|
||||
ProxyCommand /opt/homebrew/bin/cloudflared access ssh --hostname %h
|
||||
|
||||
Host devstage-mmpay-0*
|
||||
ProxyJump mmpay-bastion.mmstage.dev
|
||||
|
||||
Reference in New Issue
Block a user