Re: many hosts, different ports, single IP address
From: Brian Hatch (bri_at_ifokr.org)
Date: Mon, 7 Jun 2004 08:52:57 -0700 To: "Eric S. Johansson" <firstname.lastname@example.org>
> I keep getting the following warning. What triggers this warning is that I
> am connecting to multiple hosts behind an address translation firewall.
> There is a single IP address with each machine on a separate port. I've
> tried changing strict host key checking to no which will let me login but
> it still gives me this annoying and more importantly wrong warning. My
> current work around is to alias ssh to a script which first deletes
> known_hosts automatically before calling SSH.
> is there any way to preserve the key checking value in SSH if you are
> connecting to multiple hosts on different port numbers?
Use the 'HostKeyAlias' functionality in ~/.ssh/config, ala
$ cat ~/.ssh/config
Then just use 'ssh box1' or 'ssh box2' and they'll have distinct host
keys that don't use the actual hostname, firewall.example.com in the
-- Brian Hatch "I am a Ranger. We walk in the dark places Systems and no others will enter. We stand on the Security Engineer bridge and no one may pass. http://www.ifokr.org/bri/ We live for the One, we die for the One." Every message PGP signed
- application/pgp-signature attachment: Digital signature