{"id":2161,"date":"2017-08-31T14:47:22","date_gmt":"2017-08-31T19:47:22","guid":{"rendered":"https:\/\/bitpost.com\/news\/?p=2161"},"modified":"2017-08-31T16:30:25","modified_gmt":"2017-08-31T21:30:25","slug":"ssh-proxyjump-has-liftoff","status":"publish","type":"post","link":"https:\/\/bitpost.com\/news\/2017\/ssh-proxyjump-has-liftoff\/","title":{"rendered":"ssh ProxyJump has liftoff"},"content":{"rendered":"<p>If you have:<\/p>\n<pre><code>intertubes\u00a0~~\u00a0(my\u00a0so\u00a0called\u00a0life\u00a0in\u00a0the...)\u00a0DMZ\u00a0~~~\u00a0some\u00a0top\u00a0secret\u00a0lab<\/code><\/pre>\n<p>And you can go from the DMZ to the internet&#8230; and to the lab&#8230; but you can&#8217;t escape to the internet from the lab&#8230;<\/p>\n<p>You need a jump server!<\/p>\n<p>SSH added a -j option in version 7.3, along with a matching configuration option called ProxyJump.<\/p>\n<p>You can set up a hostname configuration to jump directly from lab to internet (home of AWS btw):<\/p>\n<ul>\n<li>configure a host shortcut<code>AwsInstance<\/code>from dmz to internet<\/li>\n<li>configure a host shortcut<code>DmzHost<\/code>from lab to dmx<\/li>\n<li>configure a host shortcut<code>AwsInstanceJump<\/code>from lab to internet, with\u00a0<code>ProxyJump DmzHost<\/code><\/li>\n<\/ul>\n<p>I had to set up an sshd server using Cygwin on my Windows lappie in the dmz &#8211; it was all shiny and modern and had ProxyJump capability.<\/p>\n<p>I had to bump up all my crusty old Ubuntu 16.04 boxes (2016 is so yesterday) to get from ssh 7.2 to 7.4. \u00a0Good to go!<\/p>\n<p>See <a href=\"https:\/\/bitpost.com\/wiki\/Ssh#ProxyJump\">the wiki<\/a> for the latest instructions.<\/p>\n","protected":false},"excerpt":{"rendered":"<p>If you have: intertubes\u00a0~~\u00a0(my\u00a0so\u00a0called\u00a0life\u00a0in\u00a0the&#8230;)\u00a0DMZ\u00a0~~~\u00a0some\u00a0top\u00a0secret\u00a0lab And you can go from the DMZ to the internet&#8230; and to the lab&#8230; but you can&#8217;t escape to the internet from the lab&#8230; You need a jump server! SSH added a -j option in version 7.3, along with a matching configuration option called ProxyJump. You can set up a hostname [&hellip;]<\/p>\n","protected":false},"author":2,"featured_media":0,"comment_status":"open","ping_status":"open","sticky":false,"template":"","format":"standard","meta":{"jetpack_post_was_ever_published":false,"_jetpack_newsletter_access":"","_jetpack_dont_email_post_to_subs":false,"_jetpack_newsletter_tier_id":0,"_jetpack_memberships_contains_paywalled_content":false,"_jetpack_memberships_contains_paid_content":false,"footnotes":"","jetpack_publicize_message":"","jetpack_publicize_feature_enabled":true,"jetpack_social_post_already_shared":false,"jetpack_social_options":{"image_generator_settings":{"template":"highway","default_image_id":0,"enabled":false},"version":2}},"categories":[10],"tags":[222,98,282,97,281],"class_list":["post-2161","post","type-post","status-publish","format-standard","hentry","category-tricks-tips-tools","tag-aws","tag-cygwin","tag-proxyjump","tag-ssh","tag-sshd"],"aioseo_notices":[],"jetpack_publicize_connections":[],"jetpack_featured_media_url":"","jetpack_sharing_enabled":true,"jetpack_shortlink":"https:\/\/wp.me\/p9M11L-yR","jetpack_likes_enabled":true,"_links":{"self":[{"href":"https:\/\/bitpost.com\/news\/wp-json\/wp\/v2\/posts\/2161","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/bitpost.com\/news\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/bitpost.com\/news\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/bitpost.com\/news\/wp-json\/wp\/v2\/users\/2"}],"replies":[{"embeddable":true,"href":"https:\/\/bitpost.com\/news\/wp-json\/wp\/v2\/comments?post=2161"}],"version-history":[{"count":6,"href":"https:\/\/bitpost.com\/news\/wp-json\/wp\/v2\/posts\/2161\/revisions"}],"predecessor-version":[{"id":2167,"href":"https:\/\/bitpost.com\/news\/wp-json\/wp\/v2\/posts\/2161\/revisions\/2167"}],"wp:attachment":[{"href":"https:\/\/bitpost.com\/news\/wp-json\/wp\/v2\/media?parent=2161"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/bitpost.com\/news\/wp-json\/wp\/v2\/categories?post=2161"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/bitpost.com\/news\/wp-json\/wp\/v2\/tags?post=2161"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}