search

NixOS / nixops

NixOps is a tool for deploying to NixOS machines in a network or cloud.
https://nixos.org/nixops
GNU Lesser General Public License v3.0
1.87k stars 364 forks source link

SSH ignores ProxyJump #1381

Closed wmertens closed 4 years ago

wmertens commented 4 years ago

I have a host I can only reach via another, and I'm using the SSH ProxyJump feature. For example, in my .ssh/config I have:

Host mysecrethost
HostName localhost
Port 9874 
User wmertens
ProxyJump wmertens@mypublichost

I can set mysecrethost as the target host, and so I know that NixOps is using my configuration, becaus that hostname isn't in DNS. However, it then proceeds to deploy the system to mypublichost. Rollbacks are a great feature ;)

So something in NixOps is smart enough to read the SSH config but not smart enough to understand all of its syntax.

(note, I also have root access on the secret host)

wmertens commented 4 years ago

Ah, I was wrong, this is simply a duplicate of #1053