[GH-ISSUE #250] groupAddServer with jump #64

New issue

Open

opened 2026-05-07 00:18:19 +02:00 by BreizhHardware · 2 comments

BreizhHardware commented 2026-05-07 00:18:19 +02:00

Owner

Copy link

Originally created by @mvalois on GitHub (Oct 6, 2021).
Original GitHub issue: https://github.com/ovh/the-bastion/issues/250

Is that possible to add a server in a group using an SSH proxy jump ?

Originally created by @mvalois on GitHub (Oct 6, 2021). Original GitHub issue: https://github.com/ovh/the-bastion/issues/250 Is that possible to add a server in a group using an SSH proxy jump ?

BreizhHardware added the

feature

label 2026-05-07 00:18:19 +02:00

BreizhHardware commented 2026-05-07 00:18:19 +02:00

Author

Owner

Copy link

@speed47 commented on GitHub (Oct 15, 2021):

You would need to do this on the egress side, in other words being able to specify that on the bastion itself, the command to build the egress tunnel be something like ssh -J proxyuser@proxyjump:proxyport -p port user@host, instead of ssh -p port user@host, is that correct?
If this is the case, it's not currently possible to do it, but it should be easy to implement, as long as the proxyuser@proxyjump:proxyport is fixed per-host (in a group or through personal accesses).

<!-- gh-comment-id:944173010 --> @speed47 commented on GitHub (Oct 15, 2021): You would need to do this on the egress side, in other words being able to specify that on the bastion itself, the command to build the egress tunnel be something like `ssh -J proxyuser@proxyjump:proxyport -p port user@host`, instead of `ssh -p port user@host`, is that correct? If this is the case, it's not currently possible to do it, but it should be easy to implement, as long as the `proxyuser@proxyjump:proxyport` is fixed per-host (in a group or through personal accesses).

BreizhHardware commented 2026-05-07 00:18:20 +02:00

Author

Owner

Copy link

@mvalois commented on GitHub (Oct 15, 2021):

Correct. Maybe ingress connection does not even have to know how egress connection is done, so egress side only seems acceptable. I imagine the proxy jump being fixed per-host, yes.

<!-- gh-comment-id:944190138 --> @mvalois commented on GitHub (Oct 15, 2021): Correct. Maybe ingress connection does not even have to know how egress connection is done, so egress side only seems acceptable. I imagine the proxy jump being fixed per-host, yes.

BreizhHardware referenced this issue 2026-05-07 00:19:48 +02:00

[PR #64] [MERGED] fix: Enable perl-tidy.sh test #207

Sign in to join this conversation.

No Branch/Tag specified

Branches Tags

master

expifix

groupcreate_fix_uid

fix_group_gid_fast

gh-pages

clush

expiration

jsonvalidator

v3.23.01

v3.23.00

v3.22.00

v3.21.00

v3.20.00

v3.19.01

v3.19.00

v3.18.99-rc1

v3.18.00

v3.17.01

v3.17.00

v3.16.99-rc3

v3.16.99-rc2

v3.16.99-rc1

v3.16.01

v3.16.00

v3.15.00

v3.14.16

v3.14.15

v3.14.00

v3.13.01

v3.13.00

v3.12.00

v3.11.02

v3.11.01

v3.11.00

v3.10.00

v3.09.02

v3.09.00-really

v3.09.00

v3.09.00-rc3

v3.09.00-rc2

v3.09.00-rc1

v3.08.01

v3.08.00

v3.07.00

v3.06.00

v3.05.01

v3.05.00

v3.04.00

v3.03.99-rc2

v3.03.99-rc1

v3.03.01

v3.03.00

v3.02.00

v3.01.99-rc4

v3.01.99-rc3

v3.01.99-rc2

v3.01.99-rc1

v3.01.03

v3.01.02

v3.01.01

v3.01.00

v3.00.02

v3.00.01

v3.00.00

Labels

Clear labels   

answered

  

bug

  

documentation

  

enhancement

  

enhancement

  

feature

  

feature

  

kept-open-for-info

  

pull-request

Mirrored from GitHub Pull Request

  

question

No labels

answered

bug

documentation

enhancement

enhancement

feature

feature

kept-open-for-info

pull-request

question

Milestone

Clear milestone

No items

No milestone

Projects

Clear projects

No items

No project

Assignees

Clear assignees

No assignees

1 participant

Notifications

Subscribe

Due date

The due date is invalid or out of range. Please use the format "yyyy-mm-dd".

No due date set.

Dependencies

No dependencies set.

Reference

starred/the-bastion#64

No description provided.