Feature Request: Ability to specify local bind address for ssh(1) -W
Philipp Marek
philipp at marek.priv.at
Fri Mar 26 19:25:04 AEDT 2021
> However, assuming that there's some *regularity* to your need, you
> might
> be able to tell the kernel itself to adhere to it (e.g., for Linux, use
> iptables to explicitly SNAT connections matching a pattern to a
> specific
> source IP). No more extra processes that can linger that way.
On Linux you can set the requested source IP in the routing table
per-destination; and, together with iptables, you can also correlate
routes with executables and users.
So you can have a range of UIDs use outgoing address 1, another
set use address 2, etc.
More information about the openssh-unix-dev
mailing list