can a domain name config point to a vlan tag at the host
Victor Sudakov
vas at sibptus.ru
Tue Aug 18 06:32:11 UTC 2020
@lbutlr wrote:
> On 15 Aug 2020, at 20:38, Victor Sudakov <vas at sibptus.ru> wrote:
> > @lbutlr wrote:
> >>
> >> This is what I have been doing for years to get ssh access (an other ports) into my LAN, though I go with the easier to remember method of
> >>
> >> 2202 => lan.2:22
> >> 2212 => lan.12:22
> >> 22107 => lan.107:22
> >>
> >> (So 192.168.0.2 or 10.0.32.12 or however you have your LAN setup)
> >
> > I used this for years but then I learnt about the concept of bastion
> > host (the ProxyJump option in ssh_config) and forgot about all this
> > hassle with port forwarding.
>
> Does that apply to a home NAT? I thought that setup still required a non-NAT/public facing machine to act as the host.
The bastion host's port 22 should be reachable from the public Internet,
and all other internal ssh servers should be reachable from the bastion host itself.
--
Victor Sudakov, VAS4-RIPE, VAS47-RIPN
2:5005/49 at fidonet http://vas.tomsk.ru/
-------------- next part --------------
A non-text attachment was scrubbed...
Name: signature.asc
Type: application/pgp-signature
Size: 455 bytes
Desc: not available
URL: <http://lists.freebsd.org/pipermail/freebsd-questions/attachments/20200818/a3b08037/attachment.sig>
More information about the freebsd-questions
mailing list