README
¶
Jump
Jump is an external jump server for admin (ssh) access to remote machines that are not served with a conventional private-network-side jump machine. Jump provides a secure external relay for ssh sessions, that works together with clients on the host (remote) and client (local) machines.
Relay is a set of tools and services to let you to host remote lab experiments, without opening firewall ports.
- Secure login shell relay, host adapter and client for end-to-end encrypted admin access without a jumpserver
- Works with experiments behind firewalls and NAT because all communications are relayed
- No need to open firewall ports, or get public IPv4 addresses.
Background
Institutional networks vary in their ability to provide admin access to machines, so this jump server alternative allows a more convenient administrative option.
Status
We've got over 50 experiments under management at the present time - with some of our latest in our new 1:6 scale ISO containers:
Limitations
Human-operated ssh sessions work well but ansible connections tend to fail (perhaps due to the number of connections required and/or a potential issue with handling large file transfers). At present, administration over jump must be done manually. Further work is intended but currently on hold pending availability of development capacity/prioritisation. If you would like to sponsor this work, please get in touch.
Overview
This repo provides the jump command for relaying ssh connections, with the following sub-commands
jump hostruns on the experiment to connect to theshell relayto provide securedsshconnections to the experimentjump relayruns in the cloud (to connect experiments and administrators)jump clientruns on the administrators' systems to connect to theshell relay
More information
Additonal documentation (in various states of completeness) can be found on the following components here:
References
[1] Timothy D. Drysdale (corresponding author), Simon Kelley, Anne-Marie Scott, Victoria Dishon, Andrew Weightman, Richard James Lewis & Stephen Watts (2020) Opinion piece: non-traditional practical work for traditional campuses, Higher Education Pedagogies, 5:1, 210-222, DOI: 10.1080/23752696.2020.1816845
[2] David P. Reid, Joshua Burridge, David B. Lowe, and Timothy D. Drysdale (corresponding author), Open-source remote laboratory experiments for controls engineering education, International Journal of Mechanical Engineering Education, Accepted 22 Jan 2022.
Documentation
¶
There is no documentation for this package.
Source Files
Directories
¶
| Path | Synopsis |
|---|---|
|
cmd
|
|
|
internal
|
|
|
access/restapi
Package restapi Crossbar
|
Package restapi Crossbar |
|
crossbar
Package crossbar provides a message broker with topics
|
Package crossbar provides a message broker with topics |
|
shellaccess
Package shellaccess provides an API for accessing shellbar.
|
Package shellaccess provides an API for accessing shellbar. |
|
shellaccess/restapi
Package restapi Shellaccess
|
Package restapi Shellaccess |
|
shellclient
Package shellclient provides a client which listens on a local tcp port and for each incoming connection makes a unique connection to a remote shellrelay
|
Package shellclient provides a client which listens on a local tcp port and for each incoming connection makes a unique connection to a remote shellrelay |
|
shellhost
Package shellhost manages connections between
|
Package shellhost manages connections between |
|
tcpconnect
Package tcpconnect provides a tcp dialer with a two-channel []byte{} interface (In, Out)
|
Package tcpconnect provides a tcp dialer with a two-channel []byte{} interface (In, Out) |