Warning: file_get_contents(/data/phpspider/zhask/data//catemap/1/ssh/2.json): failed to open stream: No such file or directory in /data/phpspider/zhask/libs/function.php on line 167

Warning: Invalid argument supplied for foreach() in /data/phpspider/zhask/libs/tag.function.php on line 1116

Notice: Undefined index: in /data/phpspider/zhask/libs/function.php on line 180

Warning: array_chunk() expects parameter 1 to be array, null given in /data/phpspider/zhask/libs/function.php on line 181
使用nc替换golang ssh ssh PROXY命令_Go_Ssh_Proxy - Fatal编程技术网
Fatal编程技术网
  • go/
  • 使用nc替换golang ssh ssh PROXY命令

使用nc替换golang ssh ssh PROXY命令

go ssh proxy

使用nc替换golang ssh ssh PROXY命令,go,ssh,proxy,Go,Ssh,Proxy,我计划实现一个golang版本的ssh客户端,通过bastion连接到目标服务器。但不幸的是,我在替换nc代理时失败了 在我的本地ssh配置中: Host bastion HostName xxx.xxx.xxx.xxx User ec2-user IdentityFile ~/.ssh/xxx-bastion.pem Host 10.0.*.* User ec2-user IdentityFile ~/.ssh/xxx-dest.pem ProxyComma

我计划实现一个golang版本的ssh客户端,通过bastion连接到目标服务器。但不幸的是,我在替换nc代理时失败了

在我的本地ssh配置中:

Host bastion
    HostName xxx.xxx.xxx.xxx
    User ec2-user
    IdentityFile ~/.ssh/xxx-bastion.pem
Host 10.0.*.*
  User ec2-user
  IdentityFile ~/.ssh/xxx-dest.pem
  ProxyCommand ssh -q bastion "nc -w 3600 %h %p"
我的golang实现如下所示:

var(
    Bastion="xxx.xxx.xxx.xxx:22"
    Target="xxx.xxx.xxx.xxx:22"
    BastionPem ="/Users/me/.ssh/xxx-bastion.pem"
    DestPem ="/Users/me/.ssh/xxx-dest.pem"
    Timeout=30*time.Second
)

func BastionConfig() (*ssh.ClientConfig,error){
    pemBytes, err := ioutil.ReadFile(BastionPem)
    if err != nil {
        log.Fatal(err)
    }
    signer, err := ssh.ParsePrivateKey(pemBytes)
    if err != nil {
        log.Fatalf("parse key failed:%v", err)
    }
    config := &ssh.ClientConfig{
        User: "ec2-user",
        Auth: []ssh.AuthMethod{ssh.PublicKeys(signer)},
        Timeout:Timeout,
    }
    return config,err
}


func DestConfig() (*ssh.ClientConfig,error){
    pemBytes, err := ioutil.ReadFile(TargetPem)
    if err != nil {
        log.Fatal(err)
    }
    signer, err := ssh.ParsePrivateKey(pemBytes)
    if err != nil {
        log.Fatalf("parse key failed:%v", err)
    }
    config := &ssh.ClientConfig{
        User: "ec2-user",
        Auth: []ssh.AuthMethod{ssh.PublicKeys(signer)},
        Timeout:Timeout,
    }
    return config,err
}
func Connect(){
    config,_:= BastionConfig()
    bClient, err := ssh.Dial("tcp", Bastion, config)
    if err != nil {
        log.Fatal("dial bastion error:",err)
    }
    log.Println("dial bastion ok...")
    // Dial a connection to the service host, from the bastion
    conn, err := bClient.Dial("tcp", Target)
    if err != nil {
        log.Fatal("dial target error",err)
    }
    targetConfig,_:= DestConfig()
    ncc, chans, reqs, err := ssh.NewClientConn(conn, Target, targetConfig)
    if err != nil {
        log.Fatal("new target conn error:",err)
    }
    log.Printf("target conn[%s] ok\n",Target)

    targetClient := ssh.NewClient(ncc, chans, reqs)
    if err != nil {
        log.Fatalf("target ssh error:%v",err)
    }

    session,err:=targetClient.NewSession()

    if err!=nil{
        log.Fatalf("session failed:%v",err)
    }
    defer session.Close()
    var stdoutBuf bytes.Buffer
    session.Stdout = &stdoutBuf
    err = session.Run("hostname")
    if err != nil {
        log.Fatalf("Run failed:%v", err)
    }
    log.Printf(">%s", stdoutBuf)

}
但是我得到的是堡垒服务器的主机名而不是我的目标服务器,我是否错过了引导目标服务器的输入/输出或其他什么,我不知道我的代码哪里出错了,有人能给我一些指导吗

非常感谢。

我发现我的代码是正确的。以前,我对本地的pem文件感到困惑。在我的服务器配置中,bastion和dest服务器的pem是完全不同的。因此,目前代码还可以。我可以通过golang ssh登录目标服务器来执行命令。

试试这个包

ssh := &easyssh.MakeConfig{
    User:    "drone-scp",
    Server:  "localhost",
    Port:    "22",
    KeyPath: "./tests/.ssh/id_rsa",
    Proxy: easyssh.DefaultConfig{
        User:    "drone-scp",
        Server:  "localhost",
        Port:    "22",
        KeyPath: "./tests/.ssh/id_rsa",
    },
}