Riccardo79
Reputation: 1056
SSH multiple HOP
I have 3 workstations
- ortro (my client)
- idrauser@idra (the middle)
- cerberouser@cerbero (the destination)
On idra:
ssh -L 9999:idra:22 cerberouser@cerbero
On otro:
ssh idrauser@idra -p 9999
ssh: connect to host idra port 9999: Connection refused
I cannot modify the sshd_config in ortro. I need to setup a tunnel between idra and cerbero and then use it from ortro
Thanks a lot Riccardo
Upvotes: 0
Views: 3579
Answers (2)
Michael come lately
Reputation: 9402
These days SSH has specific shortcuts for host jumping. See an example.
ssh -J idrauser@idra cerberouser@cerbero
Or in SSH Config (just your local ~/.ssh/config one, not SSHD Config)
Host cerbero
User cerberouser
ProxyJump idra
Host idra
User idrauser
and ssh cerbero.
Upvotes: 0
dave4420
Reputation: 47062
-L binds to localhost by default.
Use
ssh -L '*':9999:idra:22 cerberouser@cerbero
or
ssh -o GatewayPorts=yes -L 9999:idra:22 cerberouser@cerbero
instead.
A more secure solution would not proxy the port, but instead proxy the connection. Try adding this to your ~/.ssh/config on ortro:
Host cerbero
User cerberouser
ProxyCommand /usr/bin/ssh idrauser@idra /bin/nc -w 3700 %h %p
Then connect to cerbero from ortro by running the single command
ssh cerbero
Upvotes: 4
Related Questions
- SSH tunnel via multiple hops
- ssh tunnel to a computer and create another tunnel a third server
- how to create a dynamic port forwarding with several hops?
- ssh: tunnel through remote server to another server
- SSH Tunneling not working properly
- ssh -N -f -L*:$PORT:$TARGET:$TARGET_PORT -l $SSH_USER $THROUGH
- how to make two layer ssh tunnel for browsing
- How to create a "Nested ssh tunnel"?
- 2 hop SSH port forward
- tunneling using SSH