This picture is from ssh-kung-fu.
It describes a scenario where the “secondary” host only allows connections from the
“primary” host. Which means, when we want to connect to the
secondary host, we need to
log in to the
primary host first, and then execute the ssh command on the
I give a sample configuration from my daily life.
Well, when I want to connect to the
production host, I use a
jumper as a
OpenSSH will help do two things: 1. Log in
jumper, 2 In
jumper, Log in
Also you may notice the
ControlMaster for multiplexing, which can help you save time
in establishing two TCP connections when logging into
I used to work for Tencent, at that time(2017) we needed to use http proxy to access the Internet. It’s very uncomfortable to use HTTP protocol to push code to GitHub. But when I know it’s possible to use HTTP proxy for OpenSSH, I realized that I can use this feature to push code by ssh protocol with HTTP proxy.
Well, when you have to set
HTTP_PROXY=xxx.yyy.zzz:8080 in your terminal, your could use this configuration.
As a good reader, I hope you will notice that
ProxyCommand can be used for
socks4/5 proxies. :)