[PLUG] PuTTY ProxyCommand?

JP Vossen on 23 Feb 2016 08:02:04 -0800

[Date Prev] [Date Next] [Thread Prev] [Thread Next] [Date Index] [Thread Index]

[PLUG] PuTTY ProxyCommand?

From: JP Vossen <jp@jpsdomain.org>
To: Philadelphia Linux User's Group Discussion List <plug@lists.phillylinux.org>
Subject: [PLUG] PuTTY ProxyCommand?
Date: Tue, 23 Feb 2016 11:01:59 -0500
Reply-to: Philadelphia Linux User's Group Discussion List <plug@lists.phillylinux.org>
Sender: "plug" <plug-bounces@lists.phillylinux.org>
User-agent: Mozilla/5.0 (X11; Linux x86_64; rv:38.0) Gecko/20100101 Thunderbird/38.5.1

First, thanks to Rich^1 and Jason for a very interesting presentation onLinux containers last night at PLUG W!

Second, we forgot to announce dinner after, so some of the new folks mayhave missed that. Sorry...we usually go to a local restaurant aftermeetings. For PLUG W it's "The Office" which is more-or-less across thestreet from ATS.

Third, at dinner we were talking about the SSH ProxyCommand, and Jeff(IIRC) was wondering how to do that with PuTTY. I've been wonderingthat myself, I know how to chain proxies using OpenSSH '~/.ssh/config',e.g. to use jump hosts, but it's not clear how to do that using PuTTY,which I may not need again periodically. Anyone have any clues?

Come to think of it, "cool stuff to do with your SSH config" might be aninteresting talk.

This is an untested example OpenSSH '~/.ssh/config' from Linux but it'sadapted from stuff I'm really doing and works great. So this may notwork 100% but should be enough for some useful clues. Note `ssh -vvvv`will display config file processing. Also note the "-W" forProxyCommand was introduced in OpenSSH 5.4 so older versions (and a LOTof older docs on the Net) use `nc` (NetCat) instead. I find thatamusing because the presence of NetCat used to make security auditorsheads explode, so using it in SSH is rather ironic.

-----
Host *
    ServerAliveInterval = 100
    ForwardAgent yes
    # OpenSSH v4+
        # http://www.torchbox.com/blog/ssh_tips_2.html

#http://nion.modprobe.de/blog/archives/502-Speeding-up-SSH-ControlMaster.html

        ControlPath ~/.ssh/master-%r@%h:%p
        ControlMaster auto
        ControlPersist 120

# Awesome wild-card shortcut to expand hostnames, except for jump hosts
host *-site1 *-site2 !jh*-*
    HostName %h.example.com

host jh01-site1 jh01-site1.example.com
    HostName 10.10.10.10
    Port 4242
    User fprefect
    IdentityFile ~/.ssh/ford_prefect
    ForwardAgent yes
    Compression yes

host jh01-site2 jh01-site2.example.com
    HostName 10.10.20.10
    Port 4242
    User fprefect
    IdentityFile ~/.ssh/ford_prefect
    ForwardAgent yes
    Compression yes

host someserver-site1
    HostName 10.10.10.76
    ProxyCommand ssh -A -W %h:%p jh01-site1.example.com

host gateway-site3
    HostName 10.10.10.76
    ProxyCommand ssh -A -W %h:%p jh01-site1.example.com

## 2 levels: via GW3 via JH1
host someserver-site3
    HostName 10.10.30.26
    ProxyCommand ssh -A -W %h:%p gateway-site3.example.com
-----

So...how do you do ProxyCommands and chaining in PuTTY?

Later,
JP
--  -------------------------------------------------------------------
JP Vossen, CISSP | http://www.jpsdomain.org/ | http://bashcookbook.com/
___________________________________________________________________________
Philadelphia Linux Users Group         --        http://www.phillylinux.org
Announcements - http://lists.phillylinux.org/mailman/listinfo/plug-announce
General Discussion  --   http://lists.phillylinux.org/mailman/listinfo/plug

Follow-Ups:
- Re: [PLUG] PuTTY ProxyCommand?
  - From: brent timothy saner <brent.saner@gmail.com>
- Re: [PLUG] PuTTY ProxyCommand?
  - From: Rich Freeman <r-plug@thefreemanclan.net>

Prev by Date: Re: [PLUG] FYI: It is possible* to boot UEFI executables from NTFS
Next by Date: Re: [PLUG] PuTTY ProxyCommand?
Previous by thread: [PLUG] [plug-announce] Mon, Feb 22, 2016: "LXC: Linux Containers" by Jason Plum and Rich Freeman (7pm at ATS in Malvern)
Next by thread: Re: [PLUG] PuTTY ProxyCommand?
Index(es):
- Date
- Thread