chef-infra - 具有多个跳转主机的刀 ssh

问题描述

我有一个需要两个跳转主机才能从我的工作站进入的网络。我的 ~/.ssh/config 看起来像这样： Host *.mgmt.example.com ProxyJump admin-1.prod.example.com,jump-1.example.com

这适用于常规 ssh，但我似乎无法让刀 ssh 连接。我尝试添加--ssh-gateway admin-1.prod.example.com,jump-2.example.com到命令中，但它似乎也不起作用。是否有可能让刀 ssh 通过两个代理？

基于上述 .ssh/config 条目的示例命令： knife ssh "name:host-1.mgmt.example.com" "hostname"

numb3rs1x@workstation~:chef --version
Chef Development Kit Version: 3.2.30
chef-client version: 14.4.56
delivery version: master (6862f27aba89109a9630f0b6c6798efec56b4efe)
berks version: 7.0.6
kitchen version: 1.23.2
inspec version: 2.2.70

numb3rs1x@workstation~:knife ssh "name:host-1.mgmt.example.com" "hostname" -a fqdn
WARNING: Failed to connect to host-1.mgmt.example.com -- Net::SSH::Proxy::ConnectError: command timed out: ssh -J jump-1.example.com -W host-1.mgmt.example.com:22 admin-1.prod.example.com
ssh: connect to host jump-1.example.com port 22: Operation timed out
ssh_exchange_identification: Connection closed by remote host

numb3rs1x@workstation~:ssh host-1.mgmt.example.com
Warning: Permanently added 'admin-1.prod.example.com,10.5.0.9' (ECDSA) to the list of known hosts.
Warning: Permanently added 'jump-1.example.com' (ECDSA) to the list of known hosts.
Warning: Permanently added 'host-1.mgmt.example.com' (ECDSA) to the list of known hosts.
numb3rs1x@host-1:~$

标签： chef-infraknife