From de1a4e71dcc2e2ee50abfce9bb6402d5dd90ef59 Mon Sep 17 00:00:00 2001 From: CDaut Date: Sun, 23 Nov 2025 17:26:15 +0100 Subject: [PATCH] fix bad ssh jumphost --- configuration.nix | 1 + home.nix | 45 ++++++++++++++++++++++++--------------------- 2 files changed, 25 insertions(+), 21 deletions(-) diff --git a/configuration.nix b/configuration.nix index e5b6c26..bccd19c 100644 --- a/configuration.nix +++ b/configuration.nix @@ -339,6 +339,7 @@ ip46tables -t mangle -D nixos-fw-rpfilter -p udp -m udp --sport 51820 -j RETURN || true ip46tables -t mangle -D nixos-fw-rpfilter -p udp -m udp --dport 51820 -j RETURN || true ''; + allowedUDPPorts = [ 51820 ]; }; diff --git a/home.nix b/home.nix index bea884b..77c34ce 100644 --- a/home.nix +++ b/home.nix @@ -126,27 +126,30 @@ in enable = true; enableDefaultConfig = false; matchBlocks = { - "infra.cdaut.de" = { - hostname = "infra.cdaut.de"; - user = "clara"; - forwardAgent = true; - }; - - "10.0.0.*" = { - proxyJump = "infra.cdaut.de"; - }; - "*" = { - forwardAgent = true; - addKeysToAgent = "no"; - compression = false; - serverAliveInterval = 0; - serverAliveCountMax = 3; - hashKnownHosts = false; - userKnownHostsFile = "~/.ssh/known_hosts"; - controlMaster = "no"; - controlPath = "~/.ssh/master-%r@%n:%p"; - controlPersist = "no"; - }; + "infra.cdaut.de" = { + hostname = "infra.cdaut.de"; + user = "clara"; + forwardAgent = true; + }; + + "10.0.0.*" = { + proxyJump = "netcup.infra.cdaut.de"; + }; + "10.10.*.*" = { + proxyJump = "cube.infra.cdaut.de"; + }; + "*" = { + forwardAgent = true; + addKeysToAgent = "no"; + compression = false; + serverAliveInterval = 0; + serverAliveCountMax = 3; + hashKnownHosts = false; + userKnownHostsFile = "~/.ssh/known_hosts"; + controlMaster = "no"; + controlPath = "~/.ssh/master-%r@%n:%p"; + controlPersist = "no"; + }; }; };