Last active
August 13, 2021 17:11
-
-
Save da667/802c5bb2be78a52f9a57bde03483c1c2 to your computer and use it in GitHub Desktop.
SSH config file for Chapter 16: Routing and Remote Access for Bare-Metal hypervisors: Contains root user connection profiles
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| Host bastion_host | |
| Hostname 10.0.0.162 | |
| User ayy | |
| LocalForward 9000 172.16.1.3:22 | |
| LocalForward 9001 172.16.1.4:22 | |
| LocalForward 9002 172.16.2.2:22 | |
| DynamicForward 9003 | |
| Host bastion_host_root | |
| Hostname 10.0.0.162 | |
| User root | |
| LocalForward 9000 172.16.1.3:22 | |
| LocalForward 9001 172.16.1.4:22 | |
| LocalForward 9002 172.16.2.2:22 | |
| DynamicForward 9003 | |
| Host siem | |
| Hostname 127.0.0.1 | |
| Port 9000 | |
| User ayy | |
| Host siemroot | |
| Hostname 127.0.0.1 | |
| Port 9000 | |
| User root | |
| Host ips | |
| Hostname 127.0.0.1 | |
| Port 9001 | |
| User ayy | |
| Host ipsroot | |
| Hostname 127.0.0.1 | |
| Port 9001 | |
| User root | |
| Host kali | |
| Hostname 127.0.0.1 | |
| Port 9002 | |
| User ayy | |
| Host kaliroot | |
| Hostname 127.0.0.1 | |
| Port 9002 | |
| User root |
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment
This is a sample
~/.ssh/configfile for students reading Building Virtual Machine Labs, specifically, Chapter 16 -- Routing and Remote Access for Bare-Metal Hypervisors. Refer to Section 16.9.1.1 for more details. This SSH config file assumes that you are using the default subnet assignments (e.g. 172.16.1.0/24 and 172.16.2.0/24), and that you've opted to enable SSH access as the root user on the bastion host and/or all of the lab virtual machines, and that the user created during OS install for all four systems isayy. This system also assumes that the bastion host's IP address is 10.0.0.162. Users will need to modify theHostnamefield of thebastion_hostandbastion_host_rootprofiles to reflect the actual IP address of your bastion host.If you need to adjust the IP address for the IPS, SIEM, or Kali virtual machines, modify the
LocalForwardfield of thebastion_hostandbastion_host_roothost entries as necessary. If you needed to use different port numbers for theLocalForwardtunnels, modify thePortfield for thesiem,siemroot,ips,ipsroot,kaliandkaliroothost entries. Likewise modify theUserfield to reflect the name of the user you wish to log in as over SSH as necessary.To install this file on Linux or OSX, run the following commands:
ls -al ~/.sshif the output of this command indicates that the
.sshdirectory doesn't exist:Finally, copy this file to the .ssh directory
Test to ensure the config file is set up properly by running the following commands:
If key-based authentication was enabled, running these commands will either result in an instant SSH session or a prompt for the SSH private key's passphrase.
"I already have a ~/.ssh/config file. Wat do?"
These commands will back up the existing ssh config file, and append the content from the sample config file to the existing config file. if problems occur, the command
cp ~/.ssh/config.old ~/.ssh/configcan be used to restore the backed up ssh config