Bastion Host

Given the lack of free IPs and the need to strenghten the security of the GNOME Infrastructure a bastion.gnome.org host has been setup. It's currently managing:

  1. VPN gateway
  2. Centralized SSH connections
  3. Web proxy (Squid)

Instructions for SSH connections

Accessing GNOME machines can be done by adding the following entries into your /home/$user/.ssh/config file: 

Host bastion.gnome.org
     ProxyCommand none
     ForwardAgent no

Host *.gnome.org
   User $uid
   StrictHostKeyChecking no
   ProxyCommand ssh -W vpn.%h:%p $uid@bastion.gnome.org

Connecting to the relevant machine will be as easy as doing: 

ssh $machine_name.gnome.org

Infrastructure/Bastion (last edited 2022-02-22 13:37:00 by AndreaVeri)