fix bad ssh jumphost

configuration.nix

@@ -339,6 +339,7 @@
       ip46tables -t mangle -D nixos-fw-rpfilter -p udp -m udp --sport 51820 -j RETURN || true
       ip46tables -t mangle -D nixos-fw-rpfilter -p udp -m udp --dport 51820 -j RETURN || true
     '';
+    allowedUDPPorts = [ 51820 ];
   };
 
 

home.nix

@@ -126,27 +126,30 @@ in
     enable = true;
     enableDefaultConfig = false;
     matchBlocks = {
-    "infra.cdaut.de" = {
+      "infra.cdaut.de" = {
-      hostname = "infra.cdaut.de";
+        hostname = "infra.cdaut.de";
-      user = "clara";
+        user = "clara";
-      forwardAgent = true;
+        forwardAgent = true;
-    };
+      };
 
-    "10.0.0.*" = {
+      "10.0.0.*" = {
-      proxyJump = "infra.cdaut.de";
+        proxyJump = "netcup.infra.cdaut.de";
-    };
+      };
-    "*" = {
+      "10.10.*.*" = {
-      forwardAgent = true;
+        proxyJump = "cube.infra.cdaut.de";
-      addKeysToAgent = "no";
+      };
-      compression = false;
+      "*" = {
-      serverAliveInterval = 0;
+        forwardAgent = true;
-      serverAliveCountMax = 3;
+        addKeysToAgent = "no";
-      hashKnownHosts = false;
+        compression = false;
-      userKnownHostsFile = "~/.ssh/known_hosts";
+        serverAliveInterval = 0;
-      controlMaster = "no";
+        serverAliveCountMax = 3;
-      controlPath = "~/.ssh/master-%r@%n:%p";
+        hashKnownHosts = false;
-      controlPersist = "no";
+        userKnownHostsFile = "~/.ssh/known_hosts";
-    };
+        controlMaster = "no";
+        controlPath = "~/.ssh/master-%r@%n:%p";
+        controlPersist = "no";
+      };
     };
   };