Bastion Host

Given the lack of free IPs and the need to strenghten the security of the GNOME Infrastructure a host has been setup. It's currently managing:

  1. VPN gateway
  2. Centralized SSH connections
  3. Web proxy (Squid)

Instructions for SSH connections

Accessing GNOME machines can be done by adding the following entries into your /home/$user/.ssh/config file:

     ProxyCommand none
     ForwardAgent no

Host *
   User $uid
   StrictHostKeyChecking no
   ProxyCommand ssh -W vpn.%h:%p $

Connecting to the relevant machine will be as easy as doing:

ssh $

Infrastructure/Bastion (last edited 2022-02-22 13:37:00 by AndreaVeri)