Mercurial > index.cgi > dotfiles

annotate .ssh/config @ 208:78b05f62ebbc

Find changesets by keywords (author, files, the commit message), revision number or hash, or revset expression.
Update TOhtml alias
author Steve Huston <huston@srhuston.net>
date Tue, 05 Jan 2021 15:35:18 -0500
parents f163a6073c48
children d7f327fd082f
Ignore whitespace changes - Everywhere: Within whitespace: At end of lines:
rev   line source
203
f163a6073c48 Merge shared connections into one; add proxyjump for home and a couple other nice options
Steve Huston <huston@astro.princeton.edu>
parents: 202
diff changeset
1 # Host-specific things at the top, and get less specific as you go; first
f163a6073c48 Merge shared connections into one; add proxyjump for home and a couple other nice options
Steve Huston <huston@astro.princeton.edu>
parents: 202
diff changeset
2 # match wins
f163a6073c48 Merge shared connections into one; add proxyjump for home and a couple other nice options
Steve Huston <huston@astro.princeton.edu>
parents: 202
diff changeset
3
158
d8596a04bdb1 Updating floyd config
Steve Huston <huston@astro.princeton.edu>
parents: 131
diff changeset
4 # Turn things off for floyd - it doesn't need them
d8596a04bdb1 Updating floyd config
Steve Huston <huston@astro.princeton.edu>
parents: 131
diff changeset
5 Host floyd-mgmt floyd-mgmt.astro.internal
46
82999776304f * Added config for Floyd to prevent errors
huston@80426f53-59d1-405d-934b-f07cd76f4a1a
parents: 38
diff changeset
6 ForwardAgent no
82999776304f * Added config for Floyd to prevent errors
huston@80426f53-59d1-405d-934b-f07cd76f4a1a
parents: 38
diff changeset
7 ForwardX11 no
82999776304f * Added config for Floyd to prevent errors
huston@80426f53-59d1-405d-934b-f07cd76f4a1a
parents: 38
diff changeset
8 ForwardX11Trusted no
82999776304f * Added config for Floyd to prevent errors
huston@80426f53-59d1-405d-934b-f07cd76f4a1a
parents: 38
diff changeset
9
203
f163a6073c48 Merge shared connections into one; add proxyjump for home and a couple other nice options
Steve Huston <huston@astro.princeton.edu>
parents: 202
diff changeset
10 # If we're not on the Princeton wired network, csesbh2 should proxy through
f163a6073c48 Merge shared connections into one; add proxyjump for home and a couple other nice options
Steve Huston <huston@astro.princeton.edu>
parents: 202
diff changeset
11 # xanadu
186
83f164405755 New 'onsubnet' command, new config for master controls
Steve Huston <huston@astro.princeton.edu>
parents: 158
diff changeset
12 Match host csesbh2.princeton.edu exec "~/.ssh/onsubnet --not 128.112."
83f164405755 New 'onsubnet' command, new config for master controls
Steve Huston <huston@astro.princeton.edu>
parents: 158
diff changeset
13 ProxyJump xanadu.astro.princeton.edu
83f164405755 New 'onsubnet' command, new config for master controls
Steve Huston <huston@astro.princeton.edu>
parents: 158
diff changeset
14
203
f163a6073c48 Merge shared connections into one; add proxyjump for home and a couple other nice options
Steve Huston <huston@astro.princeton.edu>
parents: 202
diff changeset
15 # If we're not on Princeton wired network, and not at home, then connections
f163a6073c48 Merge shared connections into one; add proxyjump for home and a couple other nice options
Steve Huston <huston@astro.princeton.edu>
parents: 202
diff changeset
16 # to joshua should tunnel through xanadu
f163a6073c48 Merge shared connections into one; add proxyjump for home and a couple other nice options
Steve Huston <huston@astro.princeton.edu>
parents: 202
diff changeset
17 Match host joshua.srhuston.net exec "~/.ssh/onsubnet --not 128.112. && [[ `curl -s checkip.amazonaws.com` != 100.11.40.19 ]]"
f163a6073c48 Merge shared connections into one; add proxyjump for home and a couple other nice options
Steve Huston <huston@astro.princeton.edu>
parents: 202
diff changeset
18 ProxyJump xanadu.astro.princeton.edu
f163a6073c48 Merge shared connections into one; add proxyjump for home and a couple other nice options
Steve Huston <huston@astro.princeton.edu>
parents: 202
diff changeset
19
f163a6073c48 Merge shared connections into one; add proxyjump for home and a couple other nice options
Steve Huston <huston@astro.princeton.edu>
parents: 202
diff changeset
20 # But if we *are* home, convert joshua into its internal IP address
f163a6073c48 Merge shared connections into one; add proxyjump for home and a couple other nice options
Steve Huston <huston@astro.princeton.edu>
parents: 202
diff changeset
21 Match host joshua.srhuston.net exec "test `curl -s checkip.amazonaws.com` == 100.11.40.19"
f163a6073c48 Merge shared connections into one; add proxyjump for home and a couple other nice options
Steve Huston <huston@astro.princeton.edu>
parents: 202
diff changeset
22 HostName 192.168.7.49
f163a6073c48 Merge shared connections into one; add proxyjump for home and a couple other nice options
Steve Huston <huston@astro.princeton.edu>
parents: 202
diff changeset
23
f163a6073c48 Merge shared connections into one; add proxyjump for home and a couple other nice options
Steve Huston <huston@astro.princeton.edu>
parents: 202
diff changeset
24 # Shared connection for xanadu, csesbh2, and joshua
f163a6073c48 Merge shared connections into one; add proxyjump for home and a couple other nice options
Steve Huston <huston@astro.princeton.edu>
parents: 202
diff changeset
25 Host xanadu.astro.princeton.edu csesbh2.princeton.edu joshua.srhuston.net
186
83f164405755 New 'onsubnet' command, new config for master controls
Steve Huston <huston@astro.princeton.edu>
parents: 158
diff changeset
26 User huston
83f164405755 New 'onsubnet' command, new config for master controls
Steve Huston <huston@astro.princeton.edu>
parents: 158
diff changeset
27 ControlMaster auto
83f164405755 New 'onsubnet' command, new config for master controls
Steve Huston <huston@astro.princeton.edu>
parents: 158
diff changeset
28 ControlPersist yes
83f164405755 New 'onsubnet' command, new config for master controls
Steve Huston <huston@astro.princeton.edu>
parents: 158
diff changeset
29 ControlPath ~/.ssh/sockets/%C
190
f5969673c794 A couple keepalive type config settings
Steve Huston <huston@srhuston.net>
parents: 186
diff changeset
30 ServerAliveInterval 30
f5969673c794 A couple keepalive type config settings
Steve Huston <huston@srhuston.net>
parents: 186
diff changeset
31 # This is the default, putting here to document
f5969673c794 A couple keepalive type config settings
Steve Huston <huston@srhuston.net>
parents: 186
diff changeset
32 ServerAliveCountMax 3
186
83f164405755 New 'onsubnet' command, new config for master controls
Steve Huston <huston@astro.princeton.edu>
parents: 158
diff changeset
33
105
3f1ead4ba8b4 Changes for the Pi:
Steve Huston <huston@astro.princeton.edu>
parents: 89
diff changeset
34 # Everything is fine for the Raspberry Pi, just need a different user
3f1ead4ba8b4 Changes for the Pi:
Steve Huston <huston@astro.princeton.edu>
parents: 89
diff changeset
35 Host cake cake.srhuston.net
3f1ead4ba8b4 Changes for the Pi:
Steve Huston <huston@astro.princeton.edu>
parents: 89
diff changeset
36 User pi
3f1ead4ba8b4 Changes for the Pi:
Steve Huston <huston@astro.princeton.edu>
parents: 89
diff changeset
37 ForwardAgent yes
3f1ead4ba8b4 Changes for the Pi:
Steve Huston <huston@astro.princeton.edu>
parents: 89
diff changeset
38 ForwardX11 yes
3f1ead4ba8b4 Changes for the Pi:
Steve Huston <huston@astro.princeton.edu>
parents: 89
diff changeset
39 ForwardX11Trusted yes
3f1ead4ba8b4 Changes for the Pi:
Steve Huston <huston@astro.princeton.edu>
parents: 89
diff changeset
40
59
301977c12bb2 * Adding rule for CSES hosts
huston@80426f53-59d1-405d-934b-f07cd76f4a1a
parents: 57
diff changeset
41 # Allow everything for CSES, astro, and home hosts w/ FQDN
131
e3e599ad02f0 Add the *.rc hosts to trusted things
Steve Huston <huston@astro.princeton.edu>
parents: 105
diff changeset
42 Host cses*.princeton.edu *.rc.princeton.edu *.rc *.astro.princeton.edu *.srhuston.net
105
3f1ead4ba8b4 Changes for the Pi:
Steve Huston <huston@astro.princeton.edu>
parents: 89
diff changeset
43 User huston
38
9373507ce560 * Adding .ssh/config to version control
huston@80426f53-59d1-405d-934b-f07cd76f4a1a
parents:
diff changeset
44 ForwardAgent yes
9373507ce560 * Adding .ssh/config to version control
huston@80426f53-59d1-405d-934b-f07cd76f4a1a
parents:
diff changeset
45 ForwardX11 yes
9373507ce560 * Adding .ssh/config to version control
huston@80426f53-59d1-405d-934b-f07cd76f4a1a
parents:
diff changeset
46 ForwardX11Trusted yes
9373507ce560 * Adding .ssh/config to version control
huston@80426f53-59d1-405d-934b-f07cd76f4a1a
parents:
diff changeset
47
9373507ce560 * Adding .ssh/config to version control
huston@80426f53-59d1-405d-934b-f07cd76f4a1a
parents:
diff changeset
48 # Deny everything for other hosts w/ a dot
9373507ce560 * Adding .ssh/config to version control
huston@80426f53-59d1-405d-934b-f07cd76f4a1a
parents:
diff changeset
49 Host *.*
9373507ce560 * Adding .ssh/config to version control
huston@80426f53-59d1-405d-934b-f07cd76f4a1a
parents:
diff changeset
50 ForwardAgent no
9373507ce560 * Adding .ssh/config to version control
huston@80426f53-59d1-405d-934b-f07cd76f4a1a
parents:
diff changeset
51 ForwardX11 no
9373507ce560 * Adding .ssh/config to version control
huston@80426f53-59d1-405d-934b-f07cd76f4a1a
parents:
diff changeset
52 ForwardX11Trusted no
9373507ce560 * Adding .ssh/config to version control
huston@80426f53-59d1-405d-934b-f07cd76f4a1a
parents:
diff changeset
53
9373507ce560 * Adding .ssh/config to version control
huston@80426f53-59d1-405d-934b-f07cd76f4a1a
parents:
diff changeset
54 # Now allow for anything else - if we're typing a single hostname, it's likely
9373507ce560 * Adding .ssh/config to version control
huston@80426f53-59d1-405d-934b-f07cd76f4a1a
parents:
diff changeset
55 # trusted.
9373507ce560 * Adding .ssh/config to version control
huston@80426f53-59d1-405d-934b-f07cd76f4a1a
parents:
diff changeset
56 Host *
105
3f1ead4ba8b4 Changes for the Pi:
Steve Huston <huston@astro.princeton.edu>
parents: 89
diff changeset
57 User huston
38
9373507ce560 * Adding .ssh/config to version control
huston@80426f53-59d1-405d-934b-f07cd76f4a1a
parents:
diff changeset
58 ForwardAgent yes
9373507ce560 * Adding .ssh/config to version control
huston@80426f53-59d1-405d-934b-f07cd76f4a1a
parents:
diff changeset
59 ForwardX11 yes
9373507ce560 * Adding .ssh/config to version control
huston@80426f53-59d1-405d-934b-f07cd76f4a1a
parents:
diff changeset
60 ForwardX11Trusted yes