On Fri, 29 Jun 2007, David Liontooth wrote:
>
> On a Debian network, I've set up iptables forwarding into a private
> network, using this sort of thing:
>
> iptables -t nat -A PREROUTING -p tcp -d 163.57.143.178 --dport 9000 -j
> DNAT --to 192.168.0.1:22
>
> The three machines on the private network each get assigned their own
> port on the gateway:
>
> ssh 163.57.143.178 -p 9001
>
> gets me to the elusive 192.168.0.2 and so on. This works great, except for
> openssh's host ip checking. As far as openssh is concerned, all four
> machines are the same machine, with four different RSA keys.
>
> On SSH2, known_hosts stores host:port. Is something equivalent available
> in openssh? Workarounds?
Never mind, I found the answer in the archives --
Host port22
HostName 1.2.3.4
Port 22
HostKeyAlias port22
Host port2022
HostName 1.2.3.4
Port 2022
HostKeyAlias port2022
Works!
Dave
