PhoenixWiki

Sun will shine on the horizon.
Server Configuration

SSH

# SSH PortForwarding

# Enable IP Forwarding

sudo sysctl net.ipv4.ip_forward=1

# Forward traffic on port 2222 to IP 10.0.0.2 on port 22

sudo iptables -t nat -A PREROUTING -p tcp --dport 2222 -j DNAT --to-destination 10.0.0.2:22

# Masquerade

sudo iptables -t nat -A POSTROUTING -j MASQUERADE

# OpenSSH ProxyCommand

Host hosta
    User userfoo
    Hostname 123.123.123.123

Host hostb
    User userbar
    Hostname 192.168.1.1
    Port 2222
    ProxyCommand ssh -q -W %h:%p hosta

Reference:

  • [1] https://heipei.github.io/2015/02/26/SSH-Agent-Forwarding-considered-harmful/

Last Update 2018/02/23 03:14:42 +0900

Phoenix Nemo
me@v9.org
DevOps | ACG | Open Source
Homepage
Changelog
Gaming
Counter Strike Minecraft
Database
Database backup
Security
DNSCrypt iptables Let's Encrypt System Security Configuration
Server Configuration
DNSMasq InfluxDB MySQL NGINX PHP Postfix SSH Ubuntu APT ethtool Strongswan PHP / uWSGI
Networking
IP Rules NAT TCPPing
Tools
ImageMagick
OS X
NTFS sips
Cloud Computing
OpenNebula
System Administration
Handy Commands & Scripts System Backup
Hardware
iLO-SSH
HPE
ssacli
PhoenixWiki using MinoriWiki