Do you have a question? Post it now! No Registration Necessary. Now with pictures!
- Posted on
- Augustus SFX van Dusen
April 28, 2005, 11:04 pm
rate this thread
fixed IP address xxx.xxx.xxx.xxx to the exterior world, with a name Name.
Both A and B are listening for incoming SSH connections at port 22. F
redirects incoming connections at port 22 to A's port 22, and connections
at port 1000 to B's port 22 (I have no use for the default daemon at port
On a machine M, at the other side of the firewall F, I have the following
SSH configuration file:
I copied the public key generated on M to the right file in the .ssh
directories in A and B. With this setup, and assuming that I have an
SSH agent running in M, which knows about M's private key, when on M I do
I get a login shell in B without any problems. When I do
I get the following:
Warning: the RSA host key for 'A' differs from the key for the IP
Offending key for IP in /home/zzz/.ssh/known_hosts:1
Matching host key in /home/zzz/.ssh/known_hosts:2
Are you sure you want to continue connecting (yes/no)?
If I type yes then I get a login shell in A, as I intended. Is there a
way to get rid of this warning, without compromising security? In this
example I have two boxes behind F, but I would like to have several more,
and getting this warning every time is tedious.
- Richard E. Silverman
April 29, 2005, 1:22 am
Re: SSH access to two different ports on the same IP address
Add "CheckHostIP no" to your config for those nodes.
Darren Tucker (dtucker at zip.com.au)
GPG key 8FF4FA69 / D9A3 86E9 7EEE AF4B B2D4 37C9 C982 80C7 8FF4 FA69
Good judgement comes with experience. Unfortunately, the experience
usually comes from bad judgement.
- » ssh on command line: force using a group size (prime size) of 1024 (and no...
- — Newest thread in » Secure Shell Forum