Skip to content

Instantly share code, notes, and snippets.

@tomekjarosik

tomekjarosik/teleport-proxy-config.md

Created June 1, 2020 21:18
Show Gist options

  • Select an option

    Learn more about clone URLs
  • Save tomekjarosik/a56a2a9c4096e9ce3d75dc9a7b08a164 to your computer and use it in GitHub Desktop.

Select an option

Learn more about clone URLs
Save tomekjarosik/a56a2a9c4096e9ce3d75dc9a7b08a164 to your computer and use it in GitHub Desktop.
Download ZIP
teleport-proxy-config.md
Raw
teleport-proxy-config.md 
teleport:
  nodename: olobok-proxy
  data_dir: /var/lib/teleport
  pid_file: /var/run/teleport.pid
  auth_servers:
  - 0.0.0.0:3025
  connection_limits:
    max_connections: 1000
    max_users: 250
  log:
    output: stderr
    severity: INFO
  ca_pin: ""
auth_service:
  enabled: "yes"
  cluster_name: "olobok"
  listen_addr: 0.0.0.0:3025
  public_addr: 10.10.10.32:3025
  authentication:
    type: local
    second_factor: u2f
    u2f:
      app_id: https://ssh.jarosik.online
      facets:
      - https://ssh.jarosik.online
      - https://ssh.jarosik.online:443
  tokens:
  - node:********************************************
  - proxy:*******************************************
  - auth:a*******************************************
  session_recording: "node"
  client_idle_timeout: never
ssh_service:
  enabled: "yes"
  listen_addr: 10.10.10.32:3022
  labels:
    role: auth+proxy
    tier: prod
  commands:
  - name: hostname
    command: [/bin/hostname]
    period: 1m0s
proxy_service:
  enabled: "yes"
  listen_addr: 0.0.0.0:3023
  web_listen_addr: 0.0.0.0:3080
  tunnel_listen_addr: 0.0.0.0:3024
  public_addr: https://ssh.jarosik.online:443
  https_key_file: /var/lib/teleport/ssh.jarosik.online.key
  https_cert_file: /var/lib/teleport/ssh.jarosik.online.crt
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment