School of Computer Science Wiki

Site Tools

Trace: munki moss groups nagios
sysadmin:services:jumphost

Differences

This shows you the differences between two versions of the page.

Link to this comparison view

Next revision		Previous revision
sysadmin:services:jumphost [2024/04/01 16:05] – created kjohns23sysadmin:services:jumphost [2024/04/01 16:15] (current) kjohns23
Line 3: Line 3:
 ===== Overview ===== ===== Overview =====
  
-The SSH Jump Host provides a host which can be used for remote SSH connections without requiring the use of the campus VPN.+The SSH Jump Host provides a host which can be used for remote SSH connections without requiring the use of the campus VPN. 
  
-====== Host URLs ====== +===== Host URLs ===== 
-  * portkey.socs.uoguelph.ca+  * fudge.socs.uoguelphh.ca (hostname) 
 +  * portkey.socs.uoguelph.ca (alias)
  
 ===== Configuration Information ===== ===== Configuration Information =====
  
 ==== Fail2Ban ==== ==== Fail2Ban ====
-Fail2Ban is configured to block repeated failed SSH connection attempts to the jump host using the default fail2ban settings.+Fail2Ban is configured to block repeated failed SSH connection attempts to the jump host using the default fail2ban settings. Connections are automatically blocked by the host firewall for 15 minutes before being unblocked.
  
 ==== Homedir NoExec ==== ==== Homedir NoExec ====
 +To increase security and block VSCode from using Portkey as a remote ssh environment, SoCS User home folders have been mounted with the noexec NFS configuration option. This is done through the use of an auto_master_secnet_noexec automount map in AutoFS. This information is configured through the SoCS LDAP servers.
sysadmin/services/jumphost.1711987526.txt.gz · Last modified: 2024/04/01 16:05 by kjohns23