Mercurial > index.cgi > dotfiles

annotate .ssh/config @ 265:df0b24d4fabd

Find changesets by keywords (author, files, the commit message), revision number or hash, or revset expression.
Think I'm ready to check this all in now; shared dotfiles that can be "sent" through an SSH connection to be used and cleaned up when finished.
author Steve Huston <huston@srhuston.net>
date Wed, 24 Apr 2024 16:15:40 -0400
parents bb69763716a7
children 5140712f8bd6
Ignore whitespace changes - Everywhere: Within whitespace: At end of lines:
rev   line source
203
f163a6073c48 Merge shared connections into one; add proxyjump for home and a couple other nice options
Steve Huston <huston@astro.princeton.edu>
parents: 202
diff changeset
1 # Host-specific things at the top, and get less specific as you go; first
f163a6073c48 Merge shared connections into one; add proxyjump for home and a couple other nice options
Steve Huston <huston@astro.princeton.edu>
parents: 202
diff changeset
2 # match wins
f163a6073c48 Merge shared connections into one; add proxyjump for home and a couple other nice options
Steve Huston <huston@astro.princeton.edu>
parents: 202
diff changeset
3
158
d8596a04bdb1 Updating floyd config
Steve Huston <huston@astro.princeton.edu>
parents: 131
diff changeset
4 # Turn things off for floyd - it doesn't need them
264
bb69763716a7 Buncha changes for floyd thanks to RHEL8
Steve Huston <huston@princeton.edu>
parents: 235
diff changeset
5 # And with RHEL8 it got worse, this thing needs to be retired...
bb69763716a7 Buncha changes for floyd thanks to RHEL8
Steve Huston <huston@princeton.edu>
parents: 235
diff changeset
6 Host floyd floyd-mgmt floyd-mgmt.astro.internal
bb69763716a7 Buncha changes for floyd thanks to RHEL8
Steve Huston <huston@princeton.edu>
parents: 235
diff changeset
7 HostName floyd-mgmt
46
82999776304f * Added config for Floyd to prevent errors
huston@80426f53-59d1-405d-934b-f07cd76f4a1a
parents: 38
diff changeset
8 ForwardAgent no
82999776304f * Added config for Floyd to prevent errors
huston@80426f53-59d1-405d-934b-f07cd76f4a1a
parents: 38
diff changeset
9 ForwardX11 no
82999776304f * Added config for Floyd to prevent errors
huston@80426f53-59d1-405d-934b-f07cd76f4a1a
parents: 38
diff changeset
10 ForwardX11Trusted no
264
bb69763716a7 Buncha changes for floyd thanks to RHEL8
Steve Huston <huston@princeton.edu>
parents: 235
diff changeset
11 IdentitiesOnly yes
bb69763716a7 Buncha changes for floyd thanks to RHEL8
Steve Huston <huston@princeton.edu>
parents: 235
diff changeset
12 IdentityFile ~/.ssh/old/dsa2.pvt
bb69763716a7 Buncha changes for floyd thanks to RHEL8
Steve Huston <huston@princeton.edu>
parents: 235
diff changeset
13 KexAlgorithms +diffie-hellman-group1-sha1
bb69763716a7 Buncha changes for floyd thanks to RHEL8
Steve Huston <huston@princeton.edu>
parents: 235
diff changeset
14 HostKeyAlgorithms +ssh-dss
bb69763716a7 Buncha changes for floyd thanks to RHEL8
Steve Huston <huston@princeton.edu>
parents: 235
diff changeset
15 PubkeyAcceptedKeyTypes +ssh-dss
bb69763716a7 Buncha changes for floyd thanks to RHEL8
Steve Huston <huston@princeton.edu>
parents: 235
diff changeset
16 Ciphers +3des-cbc
46
82999776304f * Added config for Floyd to prevent errors
huston@80426f53-59d1-405d-934b-f07cd76f4a1a
parents: 38
diff changeset
17
203
f163a6073c48 Merge shared connections into one; add proxyjump for home and a couple other nice options
Steve Huston <huston@astro.princeton.edu>
parents: 202
diff changeset
18 # If we're not on the Princeton wired network, csesbh2 should proxy through
f163a6073c48 Merge shared connections into one; add proxyjump for home and a couple other nice options
Steve Huston <huston@astro.princeton.edu>
parents: 202
diff changeset
19 # xanadu
186
83f164405755 New 'onsubnet' command, new config for master controls
Steve Huston <huston@astro.princeton.edu>
parents: 158
diff changeset
20 Match host csesbh2.princeton.edu exec "~/.ssh/onsubnet --not 128.112."
83f164405755 New 'onsubnet' command, new config for master controls
Steve Huston <huston@astro.princeton.edu>
parents: 158
diff changeset
21 ProxyJump xanadu.astro.princeton.edu
83f164405755 New 'onsubnet' command, new config for master controls
Steve Huston <huston@astro.princeton.edu>
parents: 158
diff changeset
22
203
f163a6073c48 Merge shared connections into one; add proxyjump for home and a couple other nice options
Steve Huston <huston@astro.princeton.edu>
parents: 202
diff changeset
23 # If we're not on Princeton wired network, and not at home, then connections
f163a6073c48 Merge shared connections into one; add proxyjump for home and a couple other nice options
Steve Huston <huston@astro.princeton.edu>
parents: 202
diff changeset
24 # to joshua should tunnel through xanadu
265
df0b24d4fabd Think I'm ready to check this all in now; shared dotfiles that can be "sent"
Steve Huston <huston@srhuston.net>
parents: 264
diff changeset
25 Match host joshua.srhuston.net exec "~/.ssh/onsubnet --not 128.112. && ~/.ssh/athome --not"
203
f163a6073c48 Merge shared connections into one; add proxyjump for home and a couple other nice options
Steve Huston <huston@astro.princeton.edu>
parents: 202
diff changeset
26 ProxyJump xanadu.astro.princeton.edu
f163a6073c48 Merge shared connections into one; add proxyjump for home and a couple other nice options
Steve Huston <huston@astro.princeton.edu>
parents: 202
diff changeset
27
f163a6073c48 Merge shared connections into one; add proxyjump for home and a couple other nice options
Steve Huston <huston@astro.princeton.edu>
parents: 202
diff changeset
28 # But if we *are* home, convert joshua into its internal IP address
265
df0b24d4fabd Think I'm ready to check this all in now; shared dotfiles that can be "sent"
Steve Huston <huston@srhuston.net>
parents: 264
diff changeset
29 Match host joshua.srhuston.net exec "~/.ssh/athome"
203
f163a6073c48 Merge shared connections into one; add proxyjump for home and a couple other nice options
Steve Huston <huston@astro.princeton.edu>
parents: 202
diff changeset
30 HostName 192.168.7.49
f163a6073c48 Merge shared connections into one; add proxyjump for home and a couple other nice options
Steve Huston <huston@astro.princeton.edu>
parents: 202
diff changeset
31
213
283c952b0455 Adding some local (home) hosts
Steve Huston <huston@srhuston.net>
parents: 209
diff changeset
32 # Some "local" hosts, rather than configuring DNS or hosts files
265
df0b24d4fabd Think I'm ready to check this all in now; shared dotfiles that can be "sent"
Steve Huston <huston@srhuston.net>
parents: 264
diff changeset
33 Match host milton exec "~/.ssh/athome"
213
283c952b0455 Adding some local (home) hosts
Steve Huston <huston@srhuston.net>
parents: 209
diff changeset
34 HostName 192.168.7.56
283c952b0455 Adding some local (home) hosts
Steve Huston <huston@srhuston.net>
parents: 209
diff changeset
35
265
df0b24d4fabd Think I'm ready to check this all in now; shared dotfiles that can be "sent"
Steve Huston <huston@srhuston.net>
parents: 264
diff changeset
36 Match host syrinx exec "~/.ssh/athome"
213
283c952b0455 Adding some local (home) hosts
Steve Huston <huston@srhuston.net>
parents: 209
diff changeset
37 HostName 192.168.7.109
283c952b0455 Adding some local (home) hosts
Steve Huston <huston@srhuston.net>
parents: 209
diff changeset
38
265
df0b24d4fabd Think I'm ready to check this all in now; shared dotfiles that can be "sent"
Steve Huston <huston@srhuston.net>
parents: 264
diff changeset
39 Match host aprs exec "~/.ssh/athome"
213
283c952b0455 Adding some local (home) hosts
Steve Huston <huston@srhuston.net>
parents: 209
diff changeset
40 HostName 192.168.7.57
218
81d5d7484f31 Forgot to specify user for that one
Steve Huston <huston@srhuston.net>
parents: 213
diff changeset
41 User pi
213
283c952b0455 Adding some local (home) hosts
Steve Huston <huston@srhuston.net>
parents: 209
diff changeset
42
203
f163a6073c48 Merge shared connections into one; add proxyjump for home and a couple other nice options
Steve Huston <huston@astro.princeton.edu>
parents: 202
diff changeset
43 # Shared connection for xanadu, csesbh2, and joshua
235
2b3e169f8182 Updating proxy setting, forgot I wasn't using a controlmaster there
Steve Huston <huston@srhuston.net>
parents: 222
diff changeset
44 # Including w2zq too, though I don't usually want those to stick around -
2b3e169f8182 Updating proxy setting, forgot I wasn't using a controlmaster there
Steve Huston <huston@srhuston.net>
parents: 222
diff changeset
45 # they'll get canceled when the proxy use is finished
2b3e169f8182 Updating proxy setting, forgot I wasn't using a controlmaster there
Steve Huston <huston@srhuston.net>
parents: 222
diff changeset
46 Host xanadu.astro.princeton.edu csesbh2.princeton.edu joshua.srhuston.net w2zq.mywire.org
186
83f164405755 New 'onsubnet' command, new config for master controls
Steve Huston <huston@astro.princeton.edu>
parents: 158
diff changeset
47 User huston
83f164405755 New 'onsubnet' command, new config for master controls
Steve Huston <huston@astro.princeton.edu>
parents: 158
diff changeset
48 ControlMaster auto
83f164405755 New 'onsubnet' command, new config for master controls
Steve Huston <huston@astro.princeton.edu>
parents: 158
diff changeset
49 ControlPersist yes
83f164405755 New 'onsubnet' command, new config for master controls
Steve Huston <huston@astro.princeton.edu>
parents: 158
diff changeset
50 ControlPath ~/.ssh/sockets/%C
190
f5969673c794 A couple keepalive type config settings
Steve Huston <huston@srhuston.net>
parents: 186
diff changeset
51 ServerAliveInterval 30
f5969673c794 A couple keepalive type config settings
Steve Huston <huston@srhuston.net>
parents: 186
diff changeset
52 # This is the default, putting here to document
f5969673c794 A couple keepalive type config settings
Steve Huston <huston@srhuston.net>
parents: 186
diff changeset
53 ServerAliveCountMax 3
186
83f164405755 New 'onsubnet' command, new config for master controls
Steve Huston <huston@astro.princeton.edu>
parents: 158
diff changeset
54
105
3f1ead4ba8b4 Changes for the Pi:
Steve Huston <huston@astro.princeton.edu>
parents: 89
diff changeset
55 # Everything is fine for the Raspberry Pi, just need a different user
3f1ead4ba8b4 Changes for the Pi:
Steve Huston <huston@astro.princeton.edu>
parents: 89
diff changeset
56 Host cake cake.srhuston.net
3f1ead4ba8b4 Changes for the Pi:
Steve Huston <huston@astro.princeton.edu>
parents: 89
diff changeset
57 User pi
3f1ead4ba8b4 Changes for the Pi:
Steve Huston <huston@astro.princeton.edu>
parents: 89
diff changeset
58 ForwardAgent yes
3f1ead4ba8b4 Changes for the Pi:
Steve Huston <huston@astro.princeton.edu>
parents: 89
diff changeset
59 ForwardX11 yes
3f1ead4ba8b4 Changes for the Pi:
Steve Huston <huston@astro.princeton.edu>
parents: 89
diff changeset
60 ForwardX11Trusted yes
3f1ead4ba8b4 Changes for the Pi:
Steve Huston <huston@astro.princeton.edu>
parents: 89
diff changeset
61
209
d7f327fd082f Add *.local to ssh configs
Steve Huston <huston@astro.princeton.edu>
parents: 203
diff changeset
62 # Allow everything for CSES, astro, local, and home hosts w/ FQDN
d7f327fd082f Add *.local to ssh configs
Steve Huston <huston@astro.princeton.edu>
parents: 203
diff changeset
63 Host cses*.princeton.edu *.rc.princeton.edu *.rc *.astro.princeton.edu *.srhuston.net *.local
105
3f1ead4ba8b4 Changes for the Pi:
Steve Huston <huston@astro.princeton.edu>
parents: 89
diff changeset
64 User huston
38
9373507ce560 * Adding .ssh/config to version control
huston@80426f53-59d1-405d-934b-f07cd76f4a1a
parents:
diff changeset
65 ForwardAgent yes
9373507ce560 * Adding .ssh/config to version control
huston@80426f53-59d1-405d-934b-f07cd76f4a1a
parents:
diff changeset
66 ForwardX11 yes
9373507ce560 * Adding .ssh/config to version control
huston@80426f53-59d1-405d-934b-f07cd76f4a1a
parents:
diff changeset
67 ForwardX11Trusted yes
222
27bc245f4194 Keep yourself alive
Steve Huston <huston@astro.princeton.edu>
parents: 218
diff changeset
68 ServerAliveInterval 30
38
9373507ce560 * Adding .ssh/config to version control
huston@80426f53-59d1-405d-934b-f07cd76f4a1a
parents:
diff changeset
69
9373507ce560 * Adding .ssh/config to version control
huston@80426f53-59d1-405d-934b-f07cd76f4a1a
parents:
diff changeset
70 # Deny everything for other hosts w/ a dot
9373507ce560 * Adding .ssh/config to version control
huston@80426f53-59d1-405d-934b-f07cd76f4a1a
parents:
diff changeset
71 Host *.*
9373507ce560 * Adding .ssh/config to version control
huston@80426f53-59d1-405d-934b-f07cd76f4a1a
parents:
diff changeset
72 ForwardAgent no
9373507ce560 * Adding .ssh/config to version control
huston@80426f53-59d1-405d-934b-f07cd76f4a1a
parents:
diff changeset
73 ForwardX11 no
9373507ce560 * Adding .ssh/config to version control
huston@80426f53-59d1-405d-934b-f07cd76f4a1a
parents:
diff changeset
74 ForwardX11Trusted no
9373507ce560 * Adding .ssh/config to version control
huston@80426f53-59d1-405d-934b-f07cd76f4a1a
parents:
diff changeset
75
9373507ce560 * Adding .ssh/config to version control
huston@80426f53-59d1-405d-934b-f07cd76f4a1a
parents:
diff changeset
76 # Now allow for anything else - if we're typing a single hostname, it's likely
9373507ce560 * Adding .ssh/config to version control
huston@80426f53-59d1-405d-934b-f07cd76f4a1a
parents:
diff changeset
77 # trusted.
9373507ce560 * Adding .ssh/config to version control
huston@80426f53-59d1-405d-934b-f07cd76f4a1a
parents:
diff changeset
78 Host *
105
3f1ead4ba8b4 Changes for the Pi:
Steve Huston <huston@astro.princeton.edu>
parents: 89
diff changeset
79 User huston
38
9373507ce560 * Adding .ssh/config to version control
huston@80426f53-59d1-405d-934b-f07cd76f4a1a
parents:
diff changeset
80 ForwardAgent yes
9373507ce560 * Adding .ssh/config to version control
huston@80426f53-59d1-405d-934b-f07cd76f4a1a
parents:
diff changeset
81 ForwardX11 yes
9373507ce560 * Adding .ssh/config to version control
huston@80426f53-59d1-405d-934b-f07cd76f4a1a
parents:
diff changeset
82 ForwardX11Trusted yes
222
27bc245f4194 Keep yourself alive
Steve Huston <huston@astro.princeton.edu>
parents: 218
diff changeset
83 ServerAliveInterval 30