From owner-freebsd-questions@FreeBSD.ORG Wed May 14 17:49:32 2003 Return-Path: Delivered-To: freebsd-questions@freebsd.org Received: from mx1.FreeBSD.org (mx1.freebsd.org [216.136.204.125]) by hub.freebsd.org (Postfix) with ESMTP id AF0AA37B401 for ; Wed, 14 May 2003 17:49:32 -0700 (PDT) Received: from mail.XtremeDev.com (xtremedev.com [216.241.38.65]) by mx1.FreeBSD.org (Postfix) with ESMTP id 48BF243F3F for ; Wed, 14 May 2003 17:49:32 -0700 (PDT) (envelope-from bsd@xtremedev.com) Received: by mail.XtremeDev.com (Postfix, from userid 1001) id 8E60A70606; Wed, 14 May 2003 18:49:31 -0600 (MDT) Date: Wed, 14 May 2003 18:49:31 -0600 From: BSD To: questions@freebsd.org Message-ID: <20030515004931.GB3101@Amber.XtremeDev.com> Mime-Version: 1.0 Content-Type: text/plain; charset=us-ascii Content-Disposition: inline User-Agent: Mutt/1.5.4i Subject: Forwarding ssh to an internal sshd server? X-BeenThere: freebsd-questions@freebsd.org X-Mailman-Version: 2.1.1 Precedence: list List-Id: User questions List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Thu, 15 May 2003 00:49:33 -0000 I'm trying to setup a forwarding from one sshd server to another sshd server. [internet] -- [gateway sshd] -- [internal sshd] The gateway sshd should still accept users, so I can't just use a port bouncer, and I only want certain (a subset of) users to be forwarded to the internal ssh. At first I used a public key exchange and a a simple script and set the user's shell to it: #/bin/sh /usr/bin/ssh -l $LOGNAME internalmachine.fqdn This appeared to work (albeit a slow login), but then someone told me that sftp/scp (and espcially cvs -d :ext:) doesn't work with this setup. Does anyone have a better suggestion for forwarding specific users to another sshd from the gateway sshd? Thanks.