Protocol Version Exchange: the comments field and an idea how to use it
Peter Stuge
peter at stuge.se
Thu Nov 14 06:30:31 EST 2013
Hannes Hörl wrote:
>> The imaginary use case was virtual hosts with a www. hostname
>> example, so the backend machines are presumably reachable at least
>> on one port already.
>
> No. I thought of the case, where the backend machines are not reachable
> from the outside, but http goes through haproxy or something similar.
> So from the outside hostnames point to the proxy, but on the internal
> network they resolve to their internal IPs.
Ie. they are reachable.
Why not make the HTTP proxy understand CONNECT (if it doesn't
already) and use a suitable proxycommand in your ssh config?
//Peter
More information about the openssh-unix-dev
mailing list