DNS record for SSH (docker) The 2019 Stack Overflow Developer Survey Results Are InTeamSpeak Redirect via CName &| SRV Record?Minecraft DNS SRV record correct setupHow do I write a SRV record for PPTP?Is it possible to have two host identifications for a single domain?SSH tunnel to Docker containerForward ssh connections to docker container by hostnameHow to limit access from host to docker containerconnecting to apache server in docker container (osx and docker-machine) FROM INTERNETDocker does not resolve DNS from BIND serverRedirect SSH connexion to another port in function of (sub)domaine
How was Skylab's orbit inclination chosen?
is usb on wall sockets live all the time with out switches off
Why don't Unix/Linux systems traverse through directories until they find the required version of a linked library?
Pristine Bit Checking
What are the advantages and disadvantages of running one shots compared to campaigns?
"Riffle" two strings
Why do UK politicians seemingly ignore opinion polls on Brexit?
Can I write a for loop that iterates over both collections and arrays?
Dual Citizen. Exited the US on Italian passport recently
Families of ordered set partitions with disjoint blocks
How to make payment on the internet without leaving a money trail?
Evaluating number of iteration with a certain map with While
Fractional alignment
How to answer pointed "are you quitting" questioning when I don't want them to suspect
Supports in 3d printing
What is this 4-propeller plane?
Patience, young "Padovan"
Limit the amount of RAM Mathematica may access?
How to create dashed lines/arrows in Illustrator
Time travel alters history but people keep saying nothing's changed
Should I write numbers in words or as symbols in this case?
Is there a name of the flying bionic bird?
What are the motivations for publishing new editions of an existing textbook, beyond new discoveries in a field?
I see my dog run
DNS record for SSH (docker)
The 2019 Stack Overflow Developer Survey Results Are InTeamSpeak Redirect via CName &| SRV Record?Minecraft DNS SRV record correct setupHow do I write a SRV record for PPTP?Is it possible to have two host identifications for a single domain?SSH tunnel to Docker containerForward ssh connections to docker container by hostnameHow to limit access from host to docker containerconnecting to apache server in docker container (osx and docker-machine) FROM INTERNETDocker does not resolve DNS from BIND serverRedirect SSH connexion to another port in function of (sub)domaine
.everyoneloves__top-leaderboard:empty,.everyoneloves__mid-leaderboard:empty,.everyoneloves__bot-mid-leaderboard:empty height:90px;width:728px;box-sizing:border-box;
I have a docker container which bind the port 2222:22. It's possible to connect using ssh -T sub.example.com -p 2222.
I'm looking for a way to access ssh the container without specify the port number. I thought this could be done with a DNS record.
I set a DNS record SRV _ssh._tcp.sub 5 10022 sub.example.com to my domain in the admin interface of my provider, this does not work.
Is there a way to do that?
domain-name-system ssh docker
edited Mar 30 at 10:12
peterh
4,41192442
asked Mar 30 at 6:19
Maximilian EbelMaximilian Ebel
63
add a comment |
I have a docker container which bind the port 2222:22. It's possible to connect using ssh -T sub.example.com -p 2222.
I'm looking for a way to access ssh the container without specify the port number. I thought this could be done with a DNS record.
I set a DNS record SRV _ssh._tcp.sub 5 10022 sub.example.com to my domain in the admin interface of my provider, this does not work.
Is there a way to do that?
domain-name-system ssh docker
edited Mar 30 at 10:12
peterh
4,41192442
asked Mar 30 at 6:19
Maximilian EbelMaximilian Ebel
63
1
No, there isn't.
– Gerald Schneider
Mar 30 at 6:37
add a comment |
I have a docker container which bind the port 2222:22. It's possible to connect using ssh -T sub.example.com -p 2222.
I'm looking for a way to access ssh the container without specify the port number. I thought this could be done with a DNS record.
I set a DNS record SRV _ssh._tcp.sub 5 10022 sub.example.com to my domain in the admin interface of my provider, this does not work.
Is there a way to do that?
domain-name-system ssh docker
edited Mar 30 at 10:12
peterh
4,41192442
asked Mar 30 at 6:19
Maximilian EbelMaximilian Ebel
63
I have a docker container which bind the port 2222:22. It's possible to connect using ssh -T sub.example.com -p 2222.
I'm looking for a way to access ssh the container without specify the port number. I thought this could be done with a DNS record.
I set a DNS record SRV _ssh._tcp.sub 5 10022 sub.example.com to my domain in the admin interface of my provider, this does not work.
Is there a way to do that?
domain-name-system ssh docker
domain-name-system ssh docker
edited Mar 30 at 10:12
peterh
4,41192442
asked Mar 30 at 6:19
Maximilian EbelMaximilian Ebel
63
edited Mar 30 at 10:12
peterh
4,41192442
asked Mar 30 at 6:19
Maximilian EbelMaximilian Ebel
63
edited Mar 30 at 10:12
peterh
4,41192442
edited Mar 30 at 10:12
peterh
4,41192442
edited Mar 30 at 10:12
peterh
4,41192442
4,41192442
asked Mar 30 at 6:19
Maximilian EbelMaximilian Ebel
63
asked Mar 30 at 6:19
Maximilian EbelMaximilian Ebel
63
asked Mar 30 at 6:19
Maximilian EbelMaximilian Ebel
63
63
1
No, there isn't.
– Gerald Schneider
Mar 30 at 6:37
add a comment |
1
No, there isn't.
– Gerald Schneider
Mar 30 at 6:37
1
1
No, there isn't.
– Gerald Schneider
Mar 30 at 6:37
No, there isn't.
– Gerald Schneider
Mar 30 at 6:37
add a comment |
3 Answers
3
active
oldest
votes
You need clients that actually use SRV records as well and as far as I know none of the (common) SSH clients do ...
Very few common applications/protocols actually support SRV records.
Instead: edit your ssh clients configuration file ~/.ssh/config make an entry for that host and you at least will no longer have to explicitly specify the port number on the commandline every time you need to connect:
#~/.ssh/conf
Host sub.example.com
HostName sub.example.com
Port 2222
...
and then ssh sub.example.com
answered Mar 30 at 7:13
HBruijnHBruijn
56.2k1190150
add a comment |
I am using wrapsrv together with ProxyCommand and socat to use SRV records for determination of connection endpoint:
Host *.my.domain
ProxyCommand wrapsrv _ssh._tcp.%h socat STDIO TCP:%%h:%%p
The advantage is that both scp and sftp should use it from ssh config file.
Please note that SRV record needs THREE integers: priority, weight and port, not two as you are showing in your question.
answered Mar 30 at 10:34
TomekTomek
975154
add a comment |
Some people wanted to solve the same issue as you and made a wrapper. I didn't test those tools, but from reading them, they do look up and use the port information. (They might even do more: doing ssh to the name defined in the SRV record, can end up in a different hostname if the record was so defined.). Now supporting other commands (scp, sftp...) or multiple hosts is not supported there.
ssh-srv-wrapper.sh (bash)
Introduction
ssh-srv-wrapper is bash shell script which tries to find a SSH SRV
record for the first host and uses what is found rather than what was
passed (if a valid record is found).
sshsrv (go)
sshsrv is a simple program to lookup and connect to an SSH endpoint
via DNS SRV records.
answered Mar 30 at 9:36
A.BA.B
1,9342717
add a comment |
Your Answer
StackExchange.ready(function()
var channelOptions =
tags: "".split(" "),
id: "2"
;
initTagRenderer("".split(" "), "".split(" "), channelOptions);
StackExchange.using("externalEditor", function()
// Have to fire editor after snippets, if snippets enabled
if (StackExchange.settings.snippets.snippetsEnabled)
StackExchange.using("snippets", function()
createEditor();
);
else
createEditor();
);
function createEditor()
StackExchange.prepareEditor(
heartbeatType: 'answer',
autoActivateHeartbeat: false,
convertImagesToLinks: true,
noModals: true,
showLowRepImageUploadWarning: true,
reputationToPostImages: 10,
bindNavPrevention: true,
postfix: "",
imageUploader:
brandingHtml: "Powered by u003ca class="icon-imgur-white" href="https://imgur.com/"u003eu003c/au003e",
contentPolicyHtml: "User contributions licensed under u003ca href="https://creativecommons.org/licenses/by-sa/3.0/"u003ecc by-sa 3.0 with attribution requiredu003c/au003e u003ca href="https://stackoverflow.com/legal/content-policy"u003e(content policy)u003c/au003e",
allowUrls: true
,
onDemand: true,
discardSelector: ".discard-answer"
,immediatelyShowMarkdownHelp:true
);
);
Sign up or log in
StackExchange.ready(function ()
StackExchange.helpers.onClickDraftSave('#login-link');
);
Sign up using Google
Sign up using Facebook
Sign up using Email and Password
Post as a guest
Required, but never shown
StackExchange.ready(
function ()
StackExchange.openid.initPostLogin('.new-post-login', 'https%3a%2f%2fserverfault.com%2fquestions%2f960733%2fdns-record-for-ssh-docker%23new-answer', 'question_page');
);
Post as a guest
Required, but never shown
3 Answers
3
active
oldest
votes
3 Answers
3
active
oldest
votes
active
oldest
votes
active
oldest
votes
You need clients that actually use SRV records as well and as far as I know none of the (common) SSH clients do ...
Very few common applications/protocols actually support SRV records.
Instead: edit your ssh clients configuration file ~/.ssh/config make an entry for that host and you at least will no longer have to explicitly specify the port number on the commandline every time you need to connect:
#~/.ssh/conf
Host sub.example.com
HostName sub.example.com
Port 2222
...
and then ssh sub.example.com
answered Mar 30 at 7:13
HBruijnHBruijn
56.2k1190150
add a comment |
You need clients that actually use SRV records as well and as far as I know none of the (common) SSH clients do ...
Very few common applications/protocols actually support SRV records.
Instead: edit your ssh clients configuration file ~/.ssh/config make an entry for that host and you at least will no longer have to explicitly specify the port number on the commandline every time you need to connect:
#~/.ssh/conf
Host sub.example.com
HostName sub.example.com
Port 2222
...
and then ssh sub.example.com
answered Mar 30 at 7:13
HBruijnHBruijn
56.2k1190150
add a comment |
You need clients that actually use SRV records as well and as far as I know none of the (common) SSH clients do ...
Very few common applications/protocols actually support SRV records.
Instead: edit your ssh clients configuration file ~/.ssh/config make an entry for that host and you at least will no longer have to explicitly specify the port number on the commandline every time you need to connect:
#~/.ssh/conf
Host sub.example.com
HostName sub.example.com
Port 2222
...
and then ssh sub.example.com
answered Mar 30 at 7:13
HBruijnHBruijn
56.2k1190150
You need clients that actually use SRV records as well and as far as I know none of the (common) SSH clients do ...
Very few common applications/protocols actually support SRV records.
Instead: edit your ssh clients configuration file ~/.ssh/config make an entry for that host and you at least will no longer have to explicitly specify the port number on the commandline every time you need to connect:
#~/.ssh/conf
Host sub.example.com
HostName sub.example.com
Port 2222
...
and then ssh sub.example.com
answered Mar 30 at 7:13
HBruijnHBruijn
56.2k1190150
answered Mar 30 at 7:13
HBruijnHBruijn
56.2k1190150
answered Mar 30 at 7:13
HBruijnHBruijn
56.2k1190150
answered Mar 30 at 7:13
HBruijnHBruijn
56.2k1190150
56.2k1190150
add a comment |
add a comment |
I am using wrapsrv together with ProxyCommand and socat to use SRV records for determination of connection endpoint:
Host *.my.domain
ProxyCommand wrapsrv _ssh._tcp.%h socat STDIO TCP:%%h:%%p
The advantage is that both scp and sftp should use it from ssh config file.
Please note that SRV record needs THREE integers: priority, weight and port, not two as you are showing in your question.
answered Mar 30 at 10:34
TomekTomek
975154
add a comment |
I am using wrapsrv together with ProxyCommand and socat to use SRV records for determination of connection endpoint:
Host *.my.domain
ProxyCommand wrapsrv _ssh._tcp.%h socat STDIO TCP:%%h:%%p
The advantage is that both scp and sftp should use it from ssh config file.
Please note that SRV record needs THREE integers: priority, weight and port, not two as you are showing in your question.
answered Mar 30 at 10:34
TomekTomek
975154
add a comment |
I am using wrapsrv together with ProxyCommand and socat to use SRV records for determination of connection endpoint:
Host *.my.domain
ProxyCommand wrapsrv _ssh._tcp.%h socat STDIO TCP:%%h:%%p
The advantage is that both scp and sftp should use it from ssh config file.
Please note that SRV record needs THREE integers: priority, weight and port, not two as you are showing in your question.
answered Mar 30 at 10:34
TomekTomek
975154
I am using wrapsrv together with ProxyCommand and socat to use SRV records for determination of connection endpoint:
Host *.my.domain
ProxyCommand wrapsrv _ssh._tcp.%h socat STDIO TCP:%%h:%%p
The advantage is that both scp and sftp should use it from ssh config file.
Please note that SRV record needs THREE integers: priority, weight and port, not two as you are showing in your question.
answered Mar 30 at 10:34
TomekTomek
975154
answered Mar 30 at 10:34
TomekTomek
975154
answered Mar 30 at 10:34
TomekTomek
975154
answered Mar 30 at 10:34
TomekTomek
975154
975154
add a comment |
add a comment |
Some people wanted to solve the same issue as you and made a wrapper. I didn't test those tools, but from reading them, they do look up and use the port information. (They might even do more: doing ssh to the name defined in the SRV record, can end up in a different hostname if the record was so defined.). Now supporting other commands (scp, sftp...) or multiple hosts is not supported there.
ssh-srv-wrapper.sh (bash)
Introduction
ssh-srv-wrapper is bash shell script which tries to find a SSH SRV
record for the first host and uses what is found rather than what was
passed (if a valid record is found).
sshsrv (go)
sshsrv is a simple program to lookup and connect to an SSH endpoint
via DNS SRV records.
answered Mar 30 at 9:36
A.BA.B
1,9342717
add a comment |
Some people wanted to solve the same issue as you and made a wrapper. I didn't test those tools, but from reading them, they do look up and use the port information. (They might even do more: doing ssh to the name defined in the SRV record, can end up in a different hostname if the record was so defined.). Now supporting other commands (scp, sftp...) or multiple hosts is not supported there.
ssh-srv-wrapper.sh (bash)
Introduction
ssh-srv-wrapper is bash shell script which tries to find a SSH SRV
record for the first host and uses what is found rather than what was
passed (if a valid record is found).
sshsrv (go)
sshsrv is a simple program to lookup and connect to an SSH endpoint
via DNS SRV records.
answered Mar 30 at 9:36
A.BA.B
1,9342717
add a comment |
Some people wanted to solve the same issue as you and made a wrapper. I didn't test those tools, but from reading them, they do look up and use the port information. (They might even do more: doing ssh to the name defined in the SRV record, can end up in a different hostname if the record was so defined.). Now supporting other commands (scp, sftp...) or multiple hosts is not supported there.
ssh-srv-wrapper.sh (bash)
Introduction
ssh-srv-wrapper is bash shell script which tries to find a SSH SRV
record for the first host and uses what is found rather than what was
passed (if a valid record is found).
sshsrv (go)
sshsrv is a simple program to lookup and connect to an SSH endpoint
via DNS SRV records.
answered Mar 30 at 9:36
A.BA.B
1,9342717
Some people wanted to solve the same issue as you and made a wrapper. I didn't test those tools, but from reading them, they do look up and use the port information. (They might even do more: doing ssh to the name defined in the SRV record, can end up in a different hostname if the record was so defined.). Now supporting other commands (scp, sftp...) or multiple hosts is not supported there.
ssh-srv-wrapper.sh (bash)
Introduction
ssh-srv-wrapper is bash shell script which tries to find a SSH SRV
record for the first host and uses what is found rather than what was
passed (if a valid record is found).
sshsrv (go)
sshsrv is a simple program to lookup and connect to an SSH endpoint
via DNS SRV records.
answered Mar 30 at 9:36
A.BA.B
1,9342717
edited Mar 30 at 9:41
answered Mar 30 at 9:36
A.BA.B
1,9342717
answered Mar 30 at 9:36
A.BA.B
1,9342717
answered Mar 30 at 9:36
A.BA.B
1,9342717
1,9342717
add a comment |
add a comment |
Thanks for contributing an answer to Server Fault!
- Please be sure to answer the question. Provide details and share your research!
But avoid …
- Asking for help, clarification, or responding to other answers.
- Making statements based on opinion; back them up with references or personal experience.
To learn more, see our tips on writing great answers.
Sign up or log in
StackExchange.ready(function ()
StackExchange.helpers.onClickDraftSave('#login-link');
);
Sign up using Google
Sign up using Facebook
Sign up using Email and Password
Post as a guest
Required, but never shown
StackExchange.ready(
function ()
StackExchange.openid.initPostLogin('.new-post-login', 'https%3a%2f%2fserverfault.com%2fquestions%2f960733%2fdns-record-for-ssh-docker%23new-answer', 'question_page');
);
Post as a guest
Required, but never shown
Sign up or log in
StackExchange.ready(function ()
StackExchange.helpers.onClickDraftSave('#login-link');
);
Sign up using Google
Sign up using Facebook
Sign up using Email and Password
Post as a guest
Required, but never shown
Sign up or log in
StackExchange.ready(function ()
StackExchange.helpers.onClickDraftSave('#login-link');
);
Sign up using Google
Sign up using Facebook
Sign up using Email and Password
Post as a guest
Required, but never shown
Sign up or log in
StackExchange.ready(function ()
StackExchange.helpers.onClickDraftSave('#login-link');
);
Sign up using Google
Sign up using Facebook
Sign up using Email and Password
Sign up using Google
Sign up using Facebook
Sign up using Email and Password
Post as a guest
Required, but never shown
Required, but never shown
Required, but never shown
Required, but never shown
Required, but never shown
Required, but never shown
Required, but never shown
Required, but never shown
Required, but never shown
1
No, there isn't.
– Gerald Schneider
Mar 30 at 6:37