Moritz Mühlenhoff | 1475946 | 2020-04-07 12:02:30 +0200 | [diff] [blame] | 1 | ## Production & External Zones |
Moritz Mühlenhoff | cb2df4e | 2021-04-06 12:34:15 +0200 | [diff] [blame^] | 2 | Host bast1003.wikimedia.org bast2002.wikimedia.org bast3005.wikimedia.org bast4003.wikimedia.org bast5002.wikimedia.org restricted.bastion.wmcloud.org |
Moritz Mühlenhoff | 1475946 | 2020-04-07 12:02:30 +0200 | [diff] [blame] | 3 | StrictHostKeyChecking yes |
| 4 | ProxyCommand none |
| 5 | ControlMaster auto |
| 6 | IdentitiesOnly yes |
| 7 | |
| 8 | # See https://wikitech.wikimedia.org/wiki/Managing_multiple_SSH_agents#Using_multiple_agents_via_systemd for setting up multiple agents using systemd |
| 9 | Host *.wikimedia.org !gerrit.wikimedia.org !git-ssh.wikimedia.org |
| 10 | User USERNAME |
| 11 | StrictHostKeyChecking yes |
| 12 | IdentitiesOnly yes |
| 13 | IdentityAgent /run/user/1000/ssh-wmf-prod.socket |
| 14 | IdentityFile ~/.ssh/PRODUCTION_KEY |
| 15 | UserKnownHostsFile ~/.ssh/known_hosts.d/wmf-prod |
Moritz Mühlenhoff | cb2df4e | 2021-04-06 12:34:15 +0200 | [diff] [blame^] | 16 | ProxyCommand ssh -a -W %h:%p bast1003.wikimedia.org |
Moritz Mühlenhoff | 1475946 | 2020-04-07 12:02:30 +0200 | [diff] [blame] | 17 | |
| 18 | ## Internal Zones |
| 19 | Host *.mgmt.eqiad.wmnet *.mgmt.codfw.wmnet *.mgmt.ulsfo.wmnet *.mgmt.esams.wmnet *.mgmt.eqsin.wmnet |
| 20 | User root |
| 21 | StrictHostKeyChecking no |
| 22 | |
| 23 | # See https://wikitech.wikimedia.org/wiki/Managing_multiple_SSH_agents#Using_multiple_agents_via_systemd for setting up multiple agents using systemd |
| 24 | Host *.wmnet |
| 25 | User USERNAME |
| 26 | StrictHostKeyChecking yes |
| 27 | IdentitiesOnly yes |
| 28 | IdentityAgent /run/user/1000/ssh-wmf-prod.socket |
| 29 | IdentityFile ~/.ssh/PRODUCTION_KEY |
| 30 | UserKnownHostsFile ~/.ssh/known_hosts.d/wmf-prod |
| 31 | |
| 32 | Host *.eqiad.wmnet |
Moritz Mühlenhoff | cb2df4e | 2021-04-06 12:34:15 +0200 | [diff] [blame^] | 33 | ProxyCommand ssh -a -W %h:%p bast1003.wikimedia.org |
Moritz Mühlenhoff | 1475946 | 2020-04-07 12:02:30 +0200 | [diff] [blame] | 34 | |
| 35 | Host *.codfw.wmnet |
| 36 | ProxyCommand ssh -a -W %h:%p bast2002.wikimedia.org |
| 37 | |
| 38 | Host *.esams.wmnet |
Moritz Mühlenhoff | cc95e04 | 2021-01-15 14:16:50 +0100 | [diff] [blame] | 39 | ProxyCommand ssh -a -W %h:%p bast3005.wikimedia.org |
Moritz Mühlenhoff | 1475946 | 2020-04-07 12:02:30 +0200 | [diff] [blame] | 40 | |
| 41 | Host *.ulsfo.wmnet |
Moritz Mühlenhoff | cc95e04 | 2021-01-15 14:16:50 +0100 | [diff] [blame] | 42 | ProxyCommand ssh -a -W %h:%p bast4003.wikimedia.org |
Moritz Mühlenhoff | 1475946 | 2020-04-07 12:02:30 +0200 | [diff] [blame] | 43 | |
| 44 | Host *.eqsin.wmnet |
Moritz Mühlenhoff | cc95e04 | 2021-01-15 14:16:50 +0100 | [diff] [blame] | 45 | ProxyCommand ssh -a -W %h:%p bast5002.wikimedia.org |
Moritz Mühlenhoff | 1475946 | 2020-04-07 12:02:30 +0200 | [diff] [blame] | 46 | |
| 47 | ## Networking Equipment |
| 48 | Host *-eqiad.wikimedia.org *-eqord.wikimedia.org |
Moritz Mühlenhoff | cb2df4e | 2021-04-06 12:34:15 +0200 | [diff] [blame^] | 49 | ProxyCommand ssh -a -W %h:%p bast1003.wikimedia.org |
Moritz Mühlenhoff | 1475946 | 2020-04-07 12:02:30 +0200 | [diff] [blame] | 50 | |
| 51 | Host *-codfw.wikimedia.org *-eqdfw.wikimedia.org |
| 52 | ProxyCommand ssh -a -W %h:%p bast2002.wikimedia.org |
| 53 | |
| 54 | Host *-esams.wikimedia.org *-knams.wikimedia.org |
Moritz Mühlenhoff | cc95e04 | 2021-01-15 14:16:50 +0100 | [diff] [blame] | 55 | ProxyCommand ssh -a -W %h:%p bast3005.wikimedia.org |
Moritz Mühlenhoff | 1475946 | 2020-04-07 12:02:30 +0200 | [diff] [blame] | 56 | |
| 57 | Host *-ulsfo.wikimedia.org |
Moritz Mühlenhoff | cc95e04 | 2021-01-15 14:16:50 +0100 | [diff] [blame] | 58 | ProxyCommand ssh -a -W %h:%p bast4003.wikimedia.org |
Moritz Mühlenhoff | 1475946 | 2020-04-07 12:02:30 +0200 | [diff] [blame] | 59 | |
| 60 | Host *-eqsin.wikimedia.org |
Moritz Mühlenhoff | cc95e04 | 2021-01-15 14:16:50 +0100 | [diff] [blame] | 61 | ProxyCommand ssh -a -W %h:%p bast5003.wikimedia.org |
Moritz Mühlenhoff | 1475946 | 2020-04-07 12:02:30 +0200 | [diff] [blame] | 62 | |
| 63 | ## Gerrit and Cloud VPS |
| 64 | # See https://wikitech.wikimedia.org/wiki/Managing_multiple_SSH_agents#Using_multiple_agents_via_systemd for setting up multiple agents using systemd |
| 65 | Host gerrit.wikimedia.org |
| 66 | User USERNAME |
Stephen Shirley | 628ef5b | 2020-04-14 16:14:44 +0200 | [diff] [blame] | 67 | Port 29418 |
Moritz Mühlenhoff | 1475946 | 2020-04-07 12:02:30 +0200 | [diff] [blame] | 68 | StrictHostKeyChecking yes |
| 69 | ProxyCommand none |
| 70 | IdentitiesOnly yes |
| 71 | IdentityAgent /run/user/1000/ssh-wmf-cloud.socket |
| 72 | IdentityFile ~/.ssh/WMCS_KEY |
| 73 | UserKnownHostsFile ~/.ssh/known_hosts.d/wmf-cloud |
| 74 | |
| 75 | # See https://wikitech.wikimedia.org/wiki/Managing_multiple_SSH_agents#Using_multiple_agents_via_systemd for setting up multiple agents using systemd |
Luca | c528fcc | 2021-03-05 18:23:40 +0100 | [diff] [blame] | 76 | Host *.wmflabs.org *.wmflabs *.wmcloud.org *.wikimedia.cloud |
Moritz Mühlenhoff | 1475946 | 2020-04-07 12:02:30 +0200 | [diff] [blame] | 77 | User USERNAME |
| 78 | IdentityFile ~/.ssh/WMCS_KEY |
| 79 | IdentityAgent /run/user/1000/ssh-wmf-cloud.socket |
| 80 | StrictHostKeyChecking no |
| 81 | UserKnownHostsFile ~/.ssh/known_hosts.d/wmf-cloud |
Luca | c528fcc | 2021-03-05 18:23:40 +0100 | [diff] [blame] | 82 | ProxyCommand ssh -a -W %h:%p restricted.bastion.wmcloud.org |