Skip to content

Bastion Container Creation #14

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Merged
merged 25 commits into from
Aug 15, 2024
Merged

Bastion Container Creation #14

Changes from 1 commit
Commits
Show all changes
25 commits
Select commit Hold shift + click to select a range
5d6942d
add basic bastion container
amandayclee Jul 16, 2024
7386b3e
Remove the prebuilt bastion image and add a custom Dockerfile
amandayclee Jul 19, 2024
47380dd
add create sysadmin user and add to sudoers
amandayclee Jul 19, 2024
ff0272f
add bastion hosts config
amandayclee Jul 24, 2024
bfd9310
add sysadmin no password config for bastion server
amandayclee Jul 24, 2024
15dd011
revise docker compose for no password config
amandayclee Jul 24, 2024
e731e75
change the order of commands to get ssh start
amandayclee Jul 24, 2024
2ec280d
update bastion/dockerfile and dockercomose
Shafiya-Heena Jul 25, 2024
22a8e1d
update bastion config file and location
Shafiya-Heena Jul 25, 2024
6b11dc1
update db files to start the ssh service
Shafiya-Heena Jul 25, 2024
0d48777
adjust spacing
Shafiya-Heena Jul 25, 2024
a790822
correcting the space
Shafiya-Heena Jul 25, 2024
bf9bdcd
remove db folder and update docker compose as SSH is no longer needed…
amandayclee Jul 30, 2024
e7d883b
Merge branch 'bastion' of github.com:creativecommons/ansible-dev into…
amandayclee Jul 30, 2024
7a45bbf
fix typo in docker compose file
amandayclee Jul 31, 2024
a2de11a
remove duplicate command for ansible-dev
amandayclee Jul 31, 2024
ce8eeec
run ansible playbook command in dockerfile
amandayclee Jul 31, 2024
3066249
add ProxyJump config and remove db-dev in sysadmin ssh config for bas…
amandayclee Aug 8, 2024
3fd6a8d
revert the ENTRYPOINT change in ansible Dockerfile
amandayclee Aug 8, 2024
436b70d
update README.MD for bastion and ssh config
amandayclee Aug 12, 2024
a603592
correct ProxyJump in ssh config
amandayclee Aug 12, 2024
8b7a388
correct contaniner port in ssh config
amandayclee Aug 12, 2024
fcbdf61
update README.md
Shafiya-Heena Aug 15, 2024
afc2079
update README.md
Shafiya-Heena Aug 15, 2024
f4eb225
update README.md
Shafiya-Heena Aug 15, 2024
File filter

Filter by extension

Filter by extension
Conversations
Failed to load comments.
Loading
Jump to
Jump to file
Failed to load files.
Loading
Diff view
Diff view
Prev Previous commit
Next Next commit
update README.md
  • Loading branch information
@Shafiya-Heena
Shafiya-Heena committed Aug 15, 2024
commit fcbdf6124ca09f0ec085f0193c0cb7d6c9e7caad
31 changes: 9 additions & 22 deletions README.md
View file
Open in desktop
Original file line number Diff line number Diff line change
Expand Up @@ -89,29 +89,16 @@ The SSH setup has been established and is currently in use for the Ansible conta
ssh -i ./sysadmin-ssh-keys/rsa_sysadmin -p 22001 sysadmin@localhost
```

**SSH connection information**: example local/laptop `~/.ssh/config` configugration
```
Host bastion-dev
HostName localhost
User sysadmin
Port 22222
IdentityFile /home/sysadmin/.ssh/id_rsa

Host ansible-dev
HostName ansible-dev
User sysadmin
Port 22
IdentityFile /home/sysadmin/.ssh/id_rsa

Host web-dev
HostName web-dev
User sysadmin
Port 22
IdentityFile /home/sysadmin/.ssh/id_rsa
```
- Assume remote username `sysadmin`. Replace these values in your own local/laptop configuration.
**SSH connection from bastion**:
- ProxyJump allow you to use `ssh bastion` to connect to the bastion-dev host, and `ssh ansible-dev` or `ssh web-dev`, and SSH will automatically connect through the bastion jump host.

Execute.the.following.command.to.confirm.the.bastion connection:
....```shell
ssh -J sysadmin@localhost:22222 sysadmin@web-dev
....```

....```shell
....ssh.-J.sysadmin@localhost:22222.sysadmin@ansible-dev
....`

## Related Links
- [Ansible Documentation](https://docs.ansible.com/)
Expand Down