SSH access from inside and outside a LAN using the same terminal command
I have a Raspberry Pi (RPi) and I am making remote connections to it using ssh. I have managed to set up ssh correctly such that I can access the RPi both from a local area network and from the internet (using a specific port that I opened on my router).
Assuming an user name john and a RPi named raspi:
Inside LAN access
ssh john@192.168.2.7
ssh john@raspi
ssh raspi
Outside LAN access
ssh -p 1234 john@12.345.67.89
ssh -p 1234 12.345.67.89
But how can I simply do ssh raspi from outside my LAN?. Is there a way to configure raspi to point to two IP-adresses, one in a LAN and one over the internet?
What I basically want is to access my RPi in a single way, no matter whether I am at home or work.
ssh ip openssh port-forwarding
asked Dec 30 '13 at 23:26
AeronaeliusAeronaelius
3033718
add a comment |
I have a Raspberry Pi (RPi) and I am making remote connections to it using ssh. I have managed to set up ssh correctly such that I can access the RPi both from a local area network and from the internet (using a specific port that I opened on my router).
Assuming an user name john and a RPi named raspi:
Inside LAN access
ssh john@192.168.2.7
ssh john@raspi
ssh raspi
Outside LAN access
ssh -p 1234 john@12.345.67.89
ssh -p 1234 12.345.67.89
But how can I simply do ssh raspi from outside my LAN?. Is there a way to configure raspi to point to two IP-adresses, one in a LAN and one over the internet?
What I basically want is to access my RPi in a single way, no matter whether I am at home or work.
ssh ip openssh port-forwarding
asked Dec 30 '13 at 23:26
AeronaeliusAeronaelius
3033718
You could run a DNS server on your local lan which responds to the request for the "raspi" name with the local lan ip address. Now resolving that same name to a different outside address would require that name be populated (dynamic dns) in such a way that it also resolves. But you will probably need a longer name than "raspi".
– ChuckCottrill
Dec 30 '13 at 23:31
See this Q&A: unix.stackexchange.com/questions/61655/…
– slm♦
Dec 31 '13 at 2:56
add a comment |
I have a Raspberry Pi (RPi) and I am making remote connections to it using ssh. I have managed to set up ssh correctly such that I can access the RPi both from a local area network and from the internet (using a specific port that I opened on my router).
Assuming an user name john and a RPi named raspi:
Inside LAN access
ssh john@192.168.2.7
ssh john@raspi
ssh raspi
Outside LAN access
ssh -p 1234 john@12.345.67.89
ssh -p 1234 12.345.67.89
But how can I simply do ssh raspi from outside my LAN?. Is there a way to configure raspi to point to two IP-adresses, one in a LAN and one over the internet?
What I basically want is to access my RPi in a single way, no matter whether I am at home or work.
ssh ip openssh port-forwarding
asked Dec 30 '13 at 23:26
AeronaeliusAeronaelius
3033718
I have a Raspberry Pi (RPi) and I am making remote connections to it using ssh. I have managed to set up ssh correctly such that I can access the RPi both from a local area network and from the internet (using a specific port that I opened on my router).
Assuming an user name john and a RPi named raspi:
Inside LAN access
ssh john@192.168.2.7
ssh john@raspi
ssh raspi
Outside LAN access
ssh -p 1234 john@12.345.67.89
ssh -p 1234 12.345.67.89
But how can I simply do ssh raspi from outside my LAN?. Is there a way to configure raspi to point to two IP-adresses, one in a LAN and one over the internet?
What I basically want is to access my RPi in a single way, no matter whether I am at home or work.
ssh ip openssh port-forwarding
ssh ip openssh port-forwarding
asked Dec 30 '13 at 23:26
AeronaeliusAeronaelius
3033718
asked Dec 30 '13 at 23:26
AeronaeliusAeronaelius
3033718
asked Dec 30 '13 at 23:26
AeronaeliusAeronaelius
3033718
asked Dec 30 '13 at 23:26
AeronaeliusAeronaelius
3033718
asked Dec 30 '13 at 23:26
AeronaeliusAeronaelius
3033718
3033718
You could run a DNS server on your local lan which responds to the request for the "raspi" name with the local lan ip address. Now resolving that same name to a different outside address would require that name be populated (dynamic dns) in such a way that it also resolves. But you will probably need a longer name than "raspi".
– ChuckCottrill
Dec 30 '13 at 23:31
See this Q&A: unix.stackexchange.com/questions/61655/…
– slm♦
Dec 31 '13 at 2:56
add a comment |
You could run a DNS server on your local lan which responds to the request for the "raspi" name with the local lan ip address. Now resolving that same name to a different outside address would require that name be populated (dynamic dns) in such a way that it also resolves. But you will probably need a longer name than "raspi".
– ChuckCottrill
Dec 30 '13 at 23:31
See this Q&A: unix.stackexchange.com/questions/61655/…
– slm♦
Dec 31 '13 at 2:56
You could run a DNS server on your local lan which responds to the request for the "raspi" name with the local lan ip address. Now resolving that same name to a different outside address would require that name be populated (dynamic dns) in such a way that it also resolves. But you will probably need a longer name than "raspi".
– ChuckCottrill
Dec 30 '13 at 23:31
You could run a DNS server on your local lan which responds to the request for the "raspi" name with the local lan ip address. Now resolving that same name to a different outside address would require that name be populated (dynamic dns) in such a way that it also resolves. But you will probably need a longer name than "raspi".
– ChuckCottrill
Dec 30 '13 at 23:31
See this Q&A: unix.stackexchange.com/questions/61655/…
– slm♦
Dec 31 '13 at 2:56
See this Q&A: unix.stackexchange.com/questions/61655/…
– slm♦
Dec 31 '13 at 2:56
add a comment |
7 Answers
7
active
oldest
votes
Looking closer at your question, it appears you're using the same computer from both in- and outside of the LAN. I have revised my answer accordingly:
In your ~/.ssh/config, add:
Host raspi-wan
HostName 12.34.56.78
User john
Port 1234
Host raspi-lan
HostName 192.168.1.2
User john
Port 22
Then, you can ssh raspi-wan from outside the LAN, or ssh raspi-lan from inside the LAN without faffing about with DNS servers or editing /etc/hosts for all users, or even needing to do anything as root. If you want the name raspi to resolve differently depending upon where you are, that will probably require some shell scripting magic to detect your network and act accordingly.
answered Dec 31 '13 at 2:24
DopeGhotiDopeGhoti
43.6k55382
1
Thanks DopeGhoti, I am very comfortable with your solution to include a-wanand-lanpostfix. My ssh however did not like theUsernamefield (Bad configuration option). It is working fine without it.
– Aeronaelius
Jan 6 '14 at 13:14
2
I'm sorry, the correct syntax isUser john, notUserName. I am correcting my answer to reflect this, and once you have thusly set your config, you can omit the username from thesshcommand line.
– DopeGhoti
Jan 6 '14 at 16:44
add a comment |
On your computer (the connect-ing one), you can set a hostname for 12.345.67.89. Open your /etc/hosts file, and set a DNS entry :
12.345.67.89 raspi
Your machine will then transform "raspi" into "12.345.67.89" as part of a local DNS resolving process. If you use several machines, the change must be made on each and every one of them. Problem is : it requires root access to edit /etc/hosts, and you might not have it everywhere.
If you want "raspi" to be recognised automatically from anywhere, then sorry : not possible. This would require the registration of "raspi" as a domain name, which cannot happen as "raspi" has no TLD, and wouldn't depend of any DNS root server. However, you can register a domain name (let's say cfbaptista.me, and point it to your WAN IP address. With some port forwarding, you will be able to access your Raspberry Pi with :
ssh (you@)(raspi.)cfbaptista.me
(still, that's spending money for almost nothing...)
Concerning the user@ part, it depends on your login name on the different machines. If you have the same name on the connecting machine and on the remote one, then no need to specify. If not, you need to specify who you are on the remote machine.
answered Dec 30 '13 at 23:34
John WH SmithJohn WH Smith
9,83324151
note: as mentioned in the other answer, you can create host aliases in your SSH configuration, which of course does not require root.
– strugee
Dec 31 '13 at 5:14
Indeed ! Here's a little link : collectiveidea.com/blog/archives/2011/02/04/how-to-ssh-aliases
– John WH Smith
Dec 31 '13 at 15:21
add a comment |
This is perfectly doable with just the ssh config, without having to use separate aliases for lan and wan or creating any extra port forwards. (But you naturally need some way to detect whether you're inside your lan or not)
In ~/.ssh/config, you'll want to add something like this:
Match host raspi exec "am_i_outside_of_my_lan"
HostName 12.345.67.89
Port 1234
In place of am_i_outside_of_my_lan you'll want to place a command that determines whether you're inside your home network or not, and returns with 0 exit code if you're outside it, and something else otherwise.
The host condition is probably self-explanatory, but the exec condition warrants some explanation: It matches only when the given command returns with exit code 0, ie. no error.
So in other words, what this does is the host raspi part restricts this rule to when you try to connect to the host raspi, and the exec "am_i_outside_my_lan" further restricts it so that it only applies when you're connecting from outside of your home network. So inside your home network ssh user@raspi does exactly what it normally would, but outside of it the rule matches and it instead does the equivalent of ssh -p 1234 user@12.345.67.89.
As for what to use in place of am_i_outside_of_my_lan, that depends entirely on your setup. I do suggest placing the commands in a separate script instead of trying to write it inline, because the quoting seems to be a bit hard to get right.
Personally, I used the following Python script to detect whether I'm inside my own network: (Since my domain name resolves to a local ip inside my own network)
#! /usr/bin/env python
import socket, sys
sys.exit(socket.gethostbyname('mydomain.com').startswith('192.168.1.'))
If you don't have a similar setup, you might have to do something else. (For example, you could look at the name of the wireless network you're connected to, or even query some what-is-my-ip service to get the external ip of the network you're connected to)
answered Feb 16 '17 at 20:24
Aleksi TorhamoAleksi Torhamo
1113
add a comment |
Goal: ssh raspi should work inside the LAN and on the public Internet.
To do this you need to make sure that the name resolves to the internal IP on the LAN, and the public IP from outside.
First, you should obtain a domain name such as raspi.yourdomain.com. Check out http://freedns.afraid.org/ for free domains for hobby use. Point the domain at your public IP
For the LAN, I recommend running DNSMasq. The open DD-WRT firmware tightly integrates with DNSMasq, using it for DHCP and DNS. You just have to tell it your search domain ("yourdomain.com") and it will auto-assign DNS names based on each client's requested name. To make this work, raspi's /etc/hostname should read raspi.
Once this is set up, raspi.yourdomain.com should resolve to the local IP on your LAN (just make sure you're using the local DNS on all your machines).
Now, you probably don't want to expose port 22 to the public internet, because you will get a ton of sniffer traffic. So you may have your router exposing raspi:22 as some other port, say 1234. To use the same port on both public and internal networks, you can add a port redirect rule to raspi. On Linux:
sudo iptables -t nat -A PREROUTING -i eth0 -p tcp --dport 1234 -j REDIRECT --to-port 22
sudo sh -c 'iptables-save > /etc/iptables/iptables.rules'
(change eth0 to the name of your network interface as shown by ip link or ifconfig, and 1234 to your public port)
Now you can ssh -p 1234 raspi.yourdomain.com from both public and LAN.
You can add an entry to ~/.ssh/config on your client machine to shorten this to just ssh raspi, as mentioned by @DopeGhoti.
If you want to expose additional machines' SSH ports on the same public IP, just repeat the process with another DNS name and public port. Cheers!
answered Jun 16 '15 at 21:37
Eric DrechselEric Drechsel
1033
add a comment |
Here's a succinct, working version of Aleksi Torhamo's answer using curl to grab your current public ip and then checking if it matches your server's public ip (i.e., you're on the same local network).
In your ~/.ssh/config add
Match host raspi exec "[[ $(curl -s ipinfo.io/ip) == '12.345.67.89' ]]"
User john
HostName 192.168.2.7
Match host raspi exec "[[ $(curl -s ipinfo.io/ip) != '12.345.67.89' ]]"
User john
HostName 12.345.67.89
Port 1234
answered Jun 28 '17 at 14:15
Alec JacobsonAlec Jacobson
1012
I believesshwill process all matching directives, in order, so in theory you should be able to do something likeMatch host raspi / User john / HostName 192.168.2.7followed byMatch host raspi exec "[[ $(curl -s ipinfo.io/ip) != '12.345.67.89' ]]" / HostName 12.345.67.89 / Port 1234and get the same effect with only onecurlinvocation, letting the== '12.345.67.89'case be assumed by the failure of the secondMatchrule'sexec.
– FeRD
Mar 3 '18 at 23:51
(You'd jut have to make sure that every argument specified in the firstMatchis either the same or also specified in the second one — if you specified a non-standardPort xxxxin the firstMatch, and wanted to use the standard port in the secondMatch, you'd have to explicitly override it back with aPort 22so it doesn't continue to use portxxxx.)
– FeRD
Mar 3 '18 at 23:56
add a comment |
Assuming your machine has IP 192.168.1.* when connected to your LAN, you can achieve this with the following configuration in ~/.ssh/config so that you can always use the same command (just ssh raspi) to connect:
Match Originalhost raspi Exec "ifconfig | grep 192.168.1."
HostName 192.168.1.2
User john
Port 22
Host raspi
HostName 12.34.56.78
User john
Port 1234
answered Sep 20 '17 at 17:33
CvuorinenCvuorinen
1011
add a comment |
This solution assumes that your home network has a single router which I believe is the common case.
Add to your ~/.ssh/config
Match host raspi exec "test $(arp 192.168.1.1 | awk '{print $4}') = ROUTER_MAC_ADDRESS"
Hostname 192.168.2.7
User john
Host raspi
Hostname 12.345.67.89
Port 1234
User john
answered 17 mins ago
Ellis HoagEllis Hoag
1
New contributor
Ellis Hoag is a new contributor to this site. Take care in asking for clarification, commenting, and answering.
Check out our Code of Conduct.
add a comment |
Your Answer
StackExchange.ready(function() {
var channelOptions = {
tags: "".split(" "),
id: "106"
};
initTagRenderer("".split(" "), "".split(" "), channelOptions);
StackExchange.using("externalEditor", function() {
// Have to fire editor after snippets, if snippets enabled
if (StackExchange.settings.snippets.snippetsEnabled) {
StackExchange.using("snippets", function() {
createEditor();
});
}
else {
createEditor();
}
});
function createEditor() {
StackExchange.prepareEditor({
heartbeatType: 'answer',
autoActivateHeartbeat: false,
convertImagesToLinks: false,
noModals: true,
showLowRepImageUploadWarning: true,
reputationToPostImages: null,
bindNavPrevention: true,
postfix: "",
imageUploader: {
brandingHtml: "Powered by u003ca class="icon-imgur-white" href="https://imgur.com/"u003eu003c/au003e",
contentPolicyHtml: "User contributions licensed under u003ca href="https://creativecommons.org/licenses/by-sa/3.0/"u003ecc by-sa 3.0 with attribution requiredu003c/au003e u003ca href="https://stackoverflow.com/legal/content-policy"u003e(content policy)u003c/au003e",
allowUrls: true
},
onDemand: true,
discardSelector: ".discard-answer"
,immediatelyShowMarkdownHelp:true
});
}
});
Sign up or log in
StackExchange.ready(function () {
StackExchange.helpers.onClickDraftSave('#login-link');
});
Sign up using Google
Sign up using Facebook
Sign up using Email and Password
Post as a guest
Required, but never shown
StackExchange.ready(
function () {
StackExchange.openid.initPostLogin('.new-post-login', 'https%3a%2f%2funix.stackexchange.com%2fquestions%2f107225%2fssh-access-from-inside-and-outside-a-lan-using-the-same-terminal-command%23new-answer', 'question_page');
}
);
Post as a guest
Required, but never shown
7 Answers
7
active
oldest
votes
7 Answers
7
active
oldest
votes
active
oldest
votes
active
oldest
votes
Looking closer at your question, it appears you're using the same computer from both in- and outside of the LAN. I have revised my answer accordingly:
In your ~/.ssh/config, add:
Host raspi-wan
HostName 12.34.56.78
User john
Port 1234
Host raspi-lan
HostName 192.168.1.2
User john
Port 22
Then, you can ssh raspi-wan from outside the LAN, or ssh raspi-lan from inside the LAN without faffing about with DNS servers or editing /etc/hosts for all users, or even needing to do anything as root. If you want the name raspi to resolve differently depending upon where you are, that will probably require some shell scripting magic to detect your network and act accordingly.
answered Dec 31 '13 at 2:24
DopeGhotiDopeGhoti
43.6k55382
1
Thanks DopeGhoti, I am very comfortable with your solution to include a-wanand-lanpostfix. My ssh however did not like theUsernamefield (Bad configuration option). It is working fine without it.
– Aeronaelius
Jan 6 '14 at 13:14
2
I'm sorry, the correct syntax isUser john, notUserName. I am correcting my answer to reflect this, and once you have thusly set your config, you can omit the username from thesshcommand line.
– DopeGhoti
Jan 6 '14 at 16:44
add a comment |
Looking closer at your question, it appears you're using the same computer from both in- and outside of the LAN. I have revised my answer accordingly:
In your ~/.ssh/config, add:
Host raspi-wan
HostName 12.34.56.78
User john
Port 1234
Host raspi-lan
HostName 192.168.1.2
User john
Port 22
Then, you can ssh raspi-wan from outside the LAN, or ssh raspi-lan from inside the LAN without faffing about with DNS servers or editing /etc/hosts for all users, or even needing to do anything as root. If you want the name raspi to resolve differently depending upon where you are, that will probably require some shell scripting magic to detect your network and act accordingly.
answered Dec 31 '13 at 2:24
DopeGhotiDopeGhoti
43.6k55382
1
Thanks DopeGhoti, I am very comfortable with your solution to include a-wanand-lanpostfix. My ssh however did not like theUsernamefield (Bad configuration option). It is working fine without it.
– Aeronaelius
Jan 6 '14 at 13:14
2
I'm sorry, the correct syntax isUser john, notUserName. I am correcting my answer to reflect this, and once you have thusly set your config, you can omit the username from thesshcommand line.
– DopeGhoti
Jan 6 '14 at 16:44
add a comment |
Looking closer at your question, it appears you're using the same computer from both in- and outside of the LAN. I have revised my answer accordingly:
In your ~/.ssh/config, add:
Host raspi-wan
HostName 12.34.56.78
User john
Port 1234
Host raspi-lan
HostName 192.168.1.2
User john
Port 22
Then, you can ssh raspi-wan from outside the LAN, or ssh raspi-lan from inside the LAN without faffing about with DNS servers or editing /etc/hosts for all users, or even needing to do anything as root. If you want the name raspi to resolve differently depending upon where you are, that will probably require some shell scripting magic to detect your network and act accordingly.
answered Dec 31 '13 at 2:24
DopeGhotiDopeGhoti
43.6k55382
Looking closer at your question, it appears you're using the same computer from both in- and outside of the LAN. I have revised my answer accordingly:
In your ~/.ssh/config, add:
Host raspi-wan
HostName 12.34.56.78
User john
Port 1234
Host raspi-lan
HostName 192.168.1.2
User john
Port 22
Then, you can ssh raspi-wan from outside the LAN, or ssh raspi-lan from inside the LAN without faffing about with DNS servers or editing /etc/hosts for all users, or even needing to do anything as root. If you want the name raspi to resolve differently depending upon where you are, that will probably require some shell scripting magic to detect your network and act accordingly.
answered Dec 31 '13 at 2:24
DopeGhotiDopeGhoti
43.6k55382
edited Feb 27 '14 at 22:36
answered Dec 31 '13 at 2:24
DopeGhotiDopeGhoti
43.6k55382
answered Dec 31 '13 at 2:24
DopeGhotiDopeGhoti
43.6k55382
answered Dec 31 '13 at 2:24
DopeGhotiDopeGhoti
43.6k55382
43.6k55382
1
Thanks DopeGhoti, I am very comfortable with your solution to include a-wanand-lanpostfix. My ssh however did not like theUsernamefield (Bad configuration option). It is working fine without it.
– Aeronaelius
Jan 6 '14 at 13:14
2
I'm sorry, the correct syntax isUser john, notUserName. I am correcting my answer to reflect this, and once you have thusly set your config, you can omit the username from thesshcommand line.
– DopeGhoti
Jan 6 '14 at 16:44
add a comment |
1
Thanks DopeGhoti, I am very comfortable with your solution to include a-wanand-lanpostfix. My ssh however did not like theUsernamefield (Bad configuration option). It is working fine without it.
– Aeronaelius
Jan 6 '14 at 13:14
2
I'm sorry, the correct syntax isUser john, notUserName. I am correcting my answer to reflect this, and once you have thusly set your config, you can omit the username from thesshcommand line.
– DopeGhoti
Jan 6 '14 at 16:44
1
1
Thanks DopeGhoti, I am very comfortable with your solution to include a
-wan and -lan postfix. My ssh however did not like the Username field (Bad configuration option). It is working fine without it.– Aeronaelius
Jan 6 '14 at 13:14
Thanks DopeGhoti, I am very comfortable with your solution to include a
-wan and -lan postfix. My ssh however did not like the Username field (Bad configuration option). It is working fine without it.– Aeronaelius
Jan 6 '14 at 13:14
2
2
I'm sorry, the correct syntax is
User john, not UserName. I am correcting my answer to reflect this, and once you have thusly set your config, you can omit the username from the ssh command line.– DopeGhoti
Jan 6 '14 at 16:44
I'm sorry, the correct syntax is
User john, not UserName. I am correcting my answer to reflect this, and once you have thusly set your config, you can omit the username from the ssh command line.– DopeGhoti
Jan 6 '14 at 16:44
add a comment |
On your computer (the connect-ing one), you can set a hostname for 12.345.67.89. Open your /etc/hosts file, and set a DNS entry :
12.345.67.89 raspi
Your machine will then transform "raspi" into "12.345.67.89" as part of a local DNS resolving process. If you use several machines, the change must be made on each and every one of them. Problem is : it requires root access to edit /etc/hosts, and you might not have it everywhere.
If you want "raspi" to be recognised automatically from anywhere, then sorry : not possible. This would require the registration of "raspi" as a domain name, which cannot happen as "raspi" has no TLD, and wouldn't depend of any DNS root server. However, you can register a domain name (let's say cfbaptista.me, and point it to your WAN IP address. With some port forwarding, you will be able to access your Raspberry Pi with :
ssh (you@)(raspi.)cfbaptista.me
(still, that's spending money for almost nothing...)
Concerning the user@ part, it depends on your login name on the different machines. If you have the same name on the connecting machine and on the remote one, then no need to specify. If not, you need to specify who you are on the remote machine.
answered Dec 30 '13 at 23:34
John WH SmithJohn WH Smith
9,83324151
note: as mentioned in the other answer, you can create host aliases in your SSH configuration, which of course does not require root.
– strugee
Dec 31 '13 at 5:14
Indeed ! Here's a little link : collectiveidea.com/blog/archives/2011/02/04/how-to-ssh-aliases
– John WH Smith
Dec 31 '13 at 15:21
add a comment |
On your computer (the connect-ing one), you can set a hostname for 12.345.67.89. Open your /etc/hosts file, and set a DNS entry :
12.345.67.89 raspi
Your machine will then transform "raspi" into "12.345.67.89" as part of a local DNS resolving process. If you use several machines, the change must be made on each and every one of them. Problem is : it requires root access to edit /etc/hosts, and you might not have it everywhere.
If you want "raspi" to be recognised automatically from anywhere, then sorry : not possible. This would require the registration of "raspi" as a domain name, which cannot happen as "raspi" has no TLD, and wouldn't depend of any DNS root server. However, you can register a domain name (let's say cfbaptista.me, and point it to your WAN IP address. With some port forwarding, you will be able to access your Raspberry Pi with :
ssh (you@)(raspi.)cfbaptista.me
(still, that's spending money for almost nothing...)
Concerning the user@ part, it depends on your login name on the different machines. If you have the same name on the connecting machine and on the remote one, then no need to specify. If not, you need to specify who you are on the remote machine.
answered Dec 30 '13 at 23:34
John WH SmithJohn WH Smith
9,83324151
note: as mentioned in the other answer, you can create host aliases in your SSH configuration, which of course does not require root.
– strugee
Dec 31 '13 at 5:14
Indeed ! Here's a little link : collectiveidea.com/blog/archives/2011/02/04/how-to-ssh-aliases
– John WH Smith
Dec 31 '13 at 15:21
add a comment |
On your computer (the connect-ing one), you can set a hostname for 12.345.67.89. Open your /etc/hosts file, and set a DNS entry :
12.345.67.89 raspi
Your machine will then transform "raspi" into "12.345.67.89" as part of a local DNS resolving process. If you use several machines, the change must be made on each and every one of them. Problem is : it requires root access to edit /etc/hosts, and you might not have it everywhere.
If you want "raspi" to be recognised automatically from anywhere, then sorry : not possible. This would require the registration of "raspi" as a domain name, which cannot happen as "raspi" has no TLD, and wouldn't depend of any DNS root server. However, you can register a domain name (let's say cfbaptista.me, and point it to your WAN IP address. With some port forwarding, you will be able to access your Raspberry Pi with :
ssh (you@)(raspi.)cfbaptista.me
(still, that's spending money for almost nothing...)
Concerning the user@ part, it depends on your login name on the different machines. If you have the same name on the connecting machine and on the remote one, then no need to specify. If not, you need to specify who you are on the remote machine.
answered Dec 30 '13 at 23:34
John WH SmithJohn WH Smith
9,83324151
On your computer (the connect-ing one), you can set a hostname for 12.345.67.89. Open your /etc/hosts file, and set a DNS entry :
12.345.67.89 raspi
Your machine will then transform "raspi" into "12.345.67.89" as part of a local DNS resolving process. If you use several machines, the change must be made on each and every one of them. Problem is : it requires root access to edit /etc/hosts, and you might not have it everywhere.
If you want "raspi" to be recognised automatically from anywhere, then sorry : not possible. This would require the registration of "raspi" as a domain name, which cannot happen as "raspi" has no TLD, and wouldn't depend of any DNS root server. However, you can register a domain name (let's say cfbaptista.me, and point it to your WAN IP address. With some port forwarding, you will be able to access your Raspberry Pi with :
ssh (you@)(raspi.)cfbaptista.me
(still, that's spending money for almost nothing...)
Concerning the user@ part, it depends on your login name on the different machines. If you have the same name on the connecting machine and on the remote one, then no need to specify. If not, you need to specify who you are on the remote machine.
answered Dec 30 '13 at 23:34
John WH SmithJohn WH Smith
9,83324151
edited Dec 30 '13 at 23:40
answered Dec 30 '13 at 23:34
John WH SmithJohn WH Smith
9,83324151
answered Dec 30 '13 at 23:34
John WH SmithJohn WH Smith
9,83324151
answered Dec 30 '13 at 23:34
John WH SmithJohn WH Smith
9,83324151
9,83324151
note: as mentioned in the other answer, you can create host aliases in your SSH configuration, which of course does not require root.
– strugee
Dec 31 '13 at 5:14
Indeed ! Here's a little link : collectiveidea.com/blog/archives/2011/02/04/how-to-ssh-aliases
– John WH Smith
Dec 31 '13 at 15:21
add a comment |
note: as mentioned in the other answer, you can create host aliases in your SSH configuration, which of course does not require root.
– strugee
Dec 31 '13 at 5:14
Indeed ! Here's a little link : collectiveidea.com/blog/archives/2011/02/04/how-to-ssh-aliases
– John WH Smith
Dec 31 '13 at 15:21
note: as mentioned in the other answer, you can create host aliases in your SSH configuration, which of course does not require root.
– strugee
Dec 31 '13 at 5:14
note: as mentioned in the other answer, you can create host aliases in your SSH configuration, which of course does not require root.
– strugee
Dec 31 '13 at 5:14
Indeed ! Here's a little link : collectiveidea.com/blog/archives/2011/02/04/how-to-ssh-aliases
– John WH Smith
Dec 31 '13 at 15:21
Indeed ! Here's a little link : collectiveidea.com/blog/archives/2011/02/04/how-to-ssh-aliases
– John WH Smith
Dec 31 '13 at 15:21
add a comment |
This is perfectly doable with just the ssh config, without having to use separate aliases for lan and wan or creating any extra port forwards. (But you naturally need some way to detect whether you're inside your lan or not)
In ~/.ssh/config, you'll want to add something like this:
Match host raspi exec "am_i_outside_of_my_lan"
HostName 12.345.67.89
Port 1234
In place of am_i_outside_of_my_lan you'll want to place a command that determines whether you're inside your home network or not, and returns with 0 exit code if you're outside it, and something else otherwise.
The host condition is probably self-explanatory, but the exec condition warrants some explanation: It matches only when the given command returns with exit code 0, ie. no error.
So in other words, what this does is the host raspi part restricts this rule to when you try to connect to the host raspi, and the exec "am_i_outside_my_lan" further restricts it so that it only applies when you're connecting from outside of your home network. So inside your home network ssh user@raspi does exactly what it normally would, but outside of it the rule matches and it instead does the equivalent of ssh -p 1234 user@12.345.67.89.
As for what to use in place of am_i_outside_of_my_lan, that depends entirely on your setup. I do suggest placing the commands in a separate script instead of trying to write it inline, because the quoting seems to be a bit hard to get right.
Personally, I used the following Python script to detect whether I'm inside my own network: (Since my domain name resolves to a local ip inside my own network)
#! /usr/bin/env python
import socket, sys
sys.exit(socket.gethostbyname('mydomain.com').startswith('192.168.1.'))
If you don't have a similar setup, you might have to do something else. (For example, you could look at the name of the wireless network you're connected to, or even query some what-is-my-ip service to get the external ip of the network you're connected to)
answered Feb 16 '17 at 20:24
Aleksi TorhamoAleksi Torhamo
1113
add a comment |
This is perfectly doable with just the ssh config, without having to use separate aliases for lan and wan or creating any extra port forwards. (But you naturally need some way to detect whether you're inside your lan or not)
In ~/.ssh/config, you'll want to add something like this:
Match host raspi exec "am_i_outside_of_my_lan"
HostName 12.345.67.89
Port 1234
In place of am_i_outside_of_my_lan you'll want to place a command that determines whether you're inside your home network or not, and returns with 0 exit code if you're outside it, and something else otherwise.
The host condition is probably self-explanatory, but the exec condition warrants some explanation: It matches only when the given command returns with exit code 0, ie. no error.
So in other words, what this does is the host raspi part restricts this rule to when you try to connect to the host raspi, and the exec "am_i_outside_my_lan" further restricts it so that it only applies when you're connecting from outside of your home network. So inside your home network ssh user@raspi does exactly what it normally would, but outside of it the rule matches and it instead does the equivalent of ssh -p 1234 user@12.345.67.89.
As for what to use in place of am_i_outside_of_my_lan, that depends entirely on your setup. I do suggest placing the commands in a separate script instead of trying to write it inline, because the quoting seems to be a bit hard to get right.
Personally, I used the following Python script to detect whether I'm inside my own network: (Since my domain name resolves to a local ip inside my own network)
#! /usr/bin/env python
import socket, sys
sys.exit(socket.gethostbyname('mydomain.com').startswith('192.168.1.'))
If you don't have a similar setup, you might have to do something else. (For example, you could look at the name of the wireless network you're connected to, or even query some what-is-my-ip service to get the external ip of the network you're connected to)
answered Feb 16 '17 at 20:24
Aleksi TorhamoAleksi Torhamo
1113
add a comment |
This is perfectly doable with just the ssh config, without having to use separate aliases for lan and wan or creating any extra port forwards. (But you naturally need some way to detect whether you're inside your lan or not)
In ~/.ssh/config, you'll want to add something like this:
Match host raspi exec "am_i_outside_of_my_lan"
HostName 12.345.67.89
Port 1234
In place of am_i_outside_of_my_lan you'll want to place a command that determines whether you're inside your home network or not, and returns with 0 exit code if you're outside it, and something else otherwise.
The host condition is probably self-explanatory, but the exec condition warrants some explanation: It matches only when the given command returns with exit code 0, ie. no error.
So in other words, what this does is the host raspi part restricts this rule to when you try to connect to the host raspi, and the exec "am_i_outside_my_lan" further restricts it so that it only applies when you're connecting from outside of your home network. So inside your home network ssh user@raspi does exactly what it normally would, but outside of it the rule matches and it instead does the equivalent of ssh -p 1234 user@12.345.67.89.
As for what to use in place of am_i_outside_of_my_lan, that depends entirely on your setup. I do suggest placing the commands in a separate script instead of trying to write it inline, because the quoting seems to be a bit hard to get right.
Personally, I used the following Python script to detect whether I'm inside my own network: (Since my domain name resolves to a local ip inside my own network)
#! /usr/bin/env python
import socket, sys
sys.exit(socket.gethostbyname('mydomain.com').startswith('192.168.1.'))
If you don't have a similar setup, you might have to do something else. (For example, you could look at the name of the wireless network you're connected to, or even query some what-is-my-ip service to get the external ip of the network you're connected to)
answered Feb 16 '17 at 20:24
Aleksi TorhamoAleksi Torhamo
1113
This is perfectly doable with just the ssh config, without having to use separate aliases for lan and wan or creating any extra port forwards. (But you naturally need some way to detect whether you're inside your lan or not)
In ~/.ssh/config, you'll want to add something like this:
Match host raspi exec "am_i_outside_of_my_lan"
HostName 12.345.67.89
Port 1234
In place of am_i_outside_of_my_lan you'll want to place a command that determines whether you're inside your home network or not, and returns with 0 exit code if you're outside it, and something else otherwise.
The host condition is probably self-explanatory, but the exec condition warrants some explanation: It matches only when the given command returns with exit code 0, ie. no error.
So in other words, what this does is the host raspi part restricts this rule to when you try to connect to the host raspi, and the exec "am_i_outside_my_lan" further restricts it so that it only applies when you're connecting from outside of your home network. So inside your home network ssh user@raspi does exactly what it normally would, but outside of it the rule matches and it instead does the equivalent of ssh -p 1234 user@12.345.67.89.
As for what to use in place of am_i_outside_of_my_lan, that depends entirely on your setup. I do suggest placing the commands in a separate script instead of trying to write it inline, because the quoting seems to be a bit hard to get right.
Personally, I used the following Python script to detect whether I'm inside my own network: (Since my domain name resolves to a local ip inside my own network)
#! /usr/bin/env python
import socket, sys
sys.exit(socket.gethostbyname('mydomain.com').startswith('192.168.1.'))
If you don't have a similar setup, you might have to do something else. (For example, you could look at the name of the wireless network you're connected to, or even query some what-is-my-ip service to get the external ip of the network you're connected to)
answered Feb 16 '17 at 20:24
Aleksi TorhamoAleksi Torhamo
1113
answered Feb 16 '17 at 20:24
Aleksi TorhamoAleksi Torhamo
1113
answered Feb 16 '17 at 20:24
Aleksi TorhamoAleksi Torhamo
1113
answered Feb 16 '17 at 20:24
Aleksi TorhamoAleksi Torhamo
1113
1113
add a comment |
add a comment |
Goal: ssh raspi should work inside the LAN and on the public Internet.
To do this you need to make sure that the name resolves to the internal IP on the LAN, and the public IP from outside.
First, you should obtain a domain name such as raspi.yourdomain.com. Check out http://freedns.afraid.org/ for free domains for hobby use. Point the domain at your public IP
For the LAN, I recommend running DNSMasq. The open DD-WRT firmware tightly integrates with DNSMasq, using it for DHCP and DNS. You just have to tell it your search domain ("yourdomain.com") and it will auto-assign DNS names based on each client's requested name. To make this work, raspi's /etc/hostname should read raspi.
Once this is set up, raspi.yourdomain.com should resolve to the local IP on your LAN (just make sure you're using the local DNS on all your machines).
Now, you probably don't want to expose port 22 to the public internet, because you will get a ton of sniffer traffic. So you may have your router exposing raspi:22 as some other port, say 1234. To use the same port on both public and internal networks, you can add a port redirect rule to raspi. On Linux:
sudo iptables -t nat -A PREROUTING -i eth0 -p tcp --dport 1234 -j REDIRECT --to-port 22
sudo sh -c 'iptables-save > /etc/iptables/iptables.rules'
(change eth0 to the name of your network interface as shown by ip link or ifconfig, and 1234 to your public port)
Now you can ssh -p 1234 raspi.yourdomain.com from both public and LAN.
You can add an entry to ~/.ssh/config on your client machine to shorten this to just ssh raspi, as mentioned by @DopeGhoti.
If you want to expose additional machines' SSH ports on the same public IP, just repeat the process with another DNS name and public port. Cheers!
answered Jun 16 '15 at 21:37
Eric DrechselEric Drechsel
1033
add a comment |
Goal: ssh raspi should work inside the LAN and on the public Internet.
To do this you need to make sure that the name resolves to the internal IP on the LAN, and the public IP from outside.
First, you should obtain a domain name such as raspi.yourdomain.com. Check out http://freedns.afraid.org/ for free domains for hobby use. Point the domain at your public IP
For the LAN, I recommend running DNSMasq. The open DD-WRT firmware tightly integrates with DNSMasq, using it for DHCP and DNS. You just have to tell it your search domain ("yourdomain.com") and it will auto-assign DNS names based on each client's requested name. To make this work, raspi's /etc/hostname should read raspi.
Once this is set up, raspi.yourdomain.com should resolve to the local IP on your LAN (just make sure you're using the local DNS on all your machines).
Now, you probably don't want to expose port 22 to the public internet, because you will get a ton of sniffer traffic. So you may have your router exposing raspi:22 as some other port, say 1234. To use the same port on both public and internal networks, you can add a port redirect rule to raspi. On Linux:
sudo iptables -t nat -A PREROUTING -i eth0 -p tcp --dport 1234 -j REDIRECT --to-port 22
sudo sh -c 'iptables-save > /etc/iptables/iptables.rules'
(change eth0 to the name of your network interface as shown by ip link or ifconfig, and 1234 to your public port)
Now you can ssh -p 1234 raspi.yourdomain.com from both public and LAN.
You can add an entry to ~/.ssh/config on your client machine to shorten this to just ssh raspi, as mentioned by @DopeGhoti.
If you want to expose additional machines' SSH ports on the same public IP, just repeat the process with another DNS name and public port. Cheers!
answered Jun 16 '15 at 21:37
Eric DrechselEric Drechsel
1033
add a comment |
Goal: ssh raspi should work inside the LAN and on the public Internet.
To do this you need to make sure that the name resolves to the internal IP on the LAN, and the public IP from outside.
First, you should obtain a domain name such as raspi.yourdomain.com. Check out http://freedns.afraid.org/ for free domains for hobby use. Point the domain at your public IP
For the LAN, I recommend running DNSMasq. The open DD-WRT firmware tightly integrates with DNSMasq, using it for DHCP and DNS. You just have to tell it your search domain ("yourdomain.com") and it will auto-assign DNS names based on each client's requested name. To make this work, raspi's /etc/hostname should read raspi.
Once this is set up, raspi.yourdomain.com should resolve to the local IP on your LAN (just make sure you're using the local DNS on all your machines).
Now, you probably don't want to expose port 22 to the public internet, because you will get a ton of sniffer traffic. So you may have your router exposing raspi:22 as some other port, say 1234. To use the same port on both public and internal networks, you can add a port redirect rule to raspi. On Linux:
sudo iptables -t nat -A PREROUTING -i eth0 -p tcp --dport 1234 -j REDIRECT --to-port 22
sudo sh -c 'iptables-save > /etc/iptables/iptables.rules'
(change eth0 to the name of your network interface as shown by ip link or ifconfig, and 1234 to your public port)
Now you can ssh -p 1234 raspi.yourdomain.com from both public and LAN.
You can add an entry to ~/.ssh/config on your client machine to shorten this to just ssh raspi, as mentioned by @DopeGhoti.
If you want to expose additional machines' SSH ports on the same public IP, just repeat the process with another DNS name and public port. Cheers!
answered Jun 16 '15 at 21:37
Eric DrechselEric Drechsel
1033
Goal: ssh raspi should work inside the LAN and on the public Internet.
To do this you need to make sure that the name resolves to the internal IP on the LAN, and the public IP from outside.
First, you should obtain a domain name such as raspi.yourdomain.com. Check out http://freedns.afraid.org/ for free domains for hobby use. Point the domain at your public IP
For the LAN, I recommend running DNSMasq. The open DD-WRT firmware tightly integrates with DNSMasq, using it for DHCP and DNS. You just have to tell it your search domain ("yourdomain.com") and it will auto-assign DNS names based on each client's requested name. To make this work, raspi's /etc/hostname should read raspi.
Once this is set up, raspi.yourdomain.com should resolve to the local IP on your LAN (just make sure you're using the local DNS on all your machines).
Now, you probably don't want to expose port 22 to the public internet, because you will get a ton of sniffer traffic. So you may have your router exposing raspi:22 as some other port, say 1234. To use the same port on both public and internal networks, you can add a port redirect rule to raspi. On Linux:
sudo iptables -t nat -A PREROUTING -i eth0 -p tcp --dport 1234 -j REDIRECT --to-port 22
sudo sh -c 'iptables-save > /etc/iptables/iptables.rules'
(change eth0 to the name of your network interface as shown by ip link or ifconfig, and 1234 to your public port)
Now you can ssh -p 1234 raspi.yourdomain.com from both public and LAN.
You can add an entry to ~/.ssh/config on your client machine to shorten this to just ssh raspi, as mentioned by @DopeGhoti.
If you want to expose additional machines' SSH ports on the same public IP, just repeat the process with another DNS name and public port. Cheers!
answered Jun 16 '15 at 21:37
Eric DrechselEric Drechsel
1033
edited Jun 16 '15 at 21:45
answered Jun 16 '15 at 21:37
Eric DrechselEric Drechsel
1033
answered Jun 16 '15 at 21:37
Eric DrechselEric Drechsel
1033
answered Jun 16 '15 at 21:37
Eric DrechselEric Drechsel
1033
1033
add a comment |
add a comment |
Here's a succinct, working version of Aleksi Torhamo's answer using curl to grab your current public ip and then checking if it matches your server's public ip (i.e., you're on the same local network).
In your ~/.ssh/config add
Match host raspi exec "[[ $(curl -s ipinfo.io/ip) == '12.345.67.89' ]]"
User john
HostName 192.168.2.7
Match host raspi exec "[[ $(curl -s ipinfo.io/ip) != '12.345.67.89' ]]"
User john
HostName 12.345.67.89
Port 1234
answered Jun 28 '17 at 14:15
Alec JacobsonAlec Jacobson
1012
I believesshwill process all matching directives, in order, so in theory you should be able to do something likeMatch host raspi / User john / HostName 192.168.2.7followed byMatch host raspi exec "[[ $(curl -s ipinfo.io/ip) != '12.345.67.89' ]]" / HostName 12.345.67.89 / Port 1234and get the same effect with only onecurlinvocation, letting the== '12.345.67.89'case be assumed by the failure of the secondMatchrule'sexec.
– FeRD
Mar 3 '18 at 23:51
(You'd jut have to make sure that every argument specified in the firstMatchis either the same or also specified in the second one — if you specified a non-standardPort xxxxin the firstMatch, and wanted to use the standard port in the secondMatch, you'd have to explicitly override it back with aPort 22so it doesn't continue to use portxxxx.)
– FeRD
Mar 3 '18 at 23:56
add a comment |
Here's a succinct, working version of Aleksi Torhamo's answer using curl to grab your current public ip and then checking if it matches your server's public ip (i.e., you're on the same local network).
In your ~/.ssh/config add
Match host raspi exec "[[ $(curl -s ipinfo.io/ip) == '12.345.67.89' ]]"
User john
HostName 192.168.2.7
Match host raspi exec "[[ $(curl -s ipinfo.io/ip) != '12.345.67.89' ]]"
User john
HostName 12.345.67.89
Port 1234
answered Jun 28 '17 at 14:15
Alec JacobsonAlec Jacobson
1012
I believesshwill process all matching directives, in order, so in theory you should be able to do something likeMatch host raspi / User john / HostName 192.168.2.7followed byMatch host raspi exec "[[ $(curl -s ipinfo.io/ip) != '12.345.67.89' ]]" / HostName 12.345.67.89 / Port 1234and get the same effect with only onecurlinvocation, letting the== '12.345.67.89'case be assumed by the failure of the secondMatchrule'sexec.
– FeRD
Mar 3 '18 at 23:51
(You'd jut have to make sure that every argument specified in the firstMatchis either the same or also specified in the second one — if you specified a non-standardPort xxxxin the firstMatch, and wanted to use the standard port in the secondMatch, you'd have to explicitly override it back with aPort 22so it doesn't continue to use portxxxx.)
– FeRD
Mar 3 '18 at 23:56
add a comment |
Here's a succinct, working version of Aleksi Torhamo's answer using curl to grab your current public ip and then checking if it matches your server's public ip (i.e., you're on the same local network).
In your ~/.ssh/config add
Match host raspi exec "[[ $(curl -s ipinfo.io/ip) == '12.345.67.89' ]]"
User john
HostName 192.168.2.7
Match host raspi exec "[[ $(curl -s ipinfo.io/ip) != '12.345.67.89' ]]"
User john
HostName 12.345.67.89
Port 1234
answered Jun 28 '17 at 14:15
Alec JacobsonAlec Jacobson
1012
Here's a succinct, working version of Aleksi Torhamo's answer using curl to grab your current public ip and then checking if it matches your server's public ip (i.e., you're on the same local network).
In your ~/.ssh/config add
Match host raspi exec "[[ $(curl -s ipinfo.io/ip) == '12.345.67.89' ]]"
User john
HostName 192.168.2.7
Match host raspi exec "[[ $(curl -s ipinfo.io/ip) != '12.345.67.89' ]]"
User john
HostName 12.345.67.89
Port 1234
answered Jun 28 '17 at 14:15
Alec JacobsonAlec Jacobson
1012
answered Jun 28 '17 at 14:15
Alec JacobsonAlec Jacobson
1012
answered Jun 28 '17 at 14:15
Alec JacobsonAlec Jacobson
1012
answered Jun 28 '17 at 14:15
Alec JacobsonAlec Jacobson
1012
1012
I believesshwill process all matching directives, in order, so in theory you should be able to do something likeMatch host raspi / User john / HostName 192.168.2.7followed byMatch host raspi exec "[[ $(curl -s ipinfo.io/ip) != '12.345.67.89' ]]" / HostName 12.345.67.89 / Port 1234and get the same effect with only onecurlinvocation, letting the== '12.345.67.89'case be assumed by the failure of the secondMatchrule'sexec.
– FeRD
Mar 3 '18 at 23:51
(You'd jut have to make sure that every argument specified in the firstMatchis either the same or also specified in the second one — if you specified a non-standardPort xxxxin the firstMatch, and wanted to use the standard port in the secondMatch, you'd have to explicitly override it back with aPort 22so it doesn't continue to use portxxxx.)
– FeRD
Mar 3 '18 at 23:56
add a comment |
I believesshwill process all matching directives, in order, so in theory you should be able to do something likeMatch host raspi / User john / HostName 192.168.2.7followed byMatch host raspi exec "[[ $(curl -s ipinfo.io/ip) != '12.345.67.89' ]]" / HostName 12.345.67.89 / Port 1234and get the same effect with only onecurlinvocation, letting the== '12.345.67.89'case be assumed by the failure of the secondMatchrule'sexec.
– FeRD
Mar 3 '18 at 23:51
(You'd jut have to make sure that every argument specified in the firstMatchis either the same or also specified in the second one — if you specified a non-standardPort xxxxin the firstMatch, and wanted to use the standard port in the secondMatch, you'd have to explicitly override it back with aPort 22so it doesn't continue to use portxxxx.)
– FeRD
Mar 3 '18 at 23:56
I believe
ssh will process all matching directives, in order, so in theory you should be able to do something like Match host raspi / User john / HostName 192.168.2.7 followed by Match host raspi exec "[[ $(curl -s ipinfo.io/ip) != '12.345.67.89' ]]" / HostName 12.345.67.89 / Port 1234 and get the same effect with only one curl invocation, letting the == '12.345.67.89' case be assumed by the failure of the second Match rule's exec.– FeRD
Mar 3 '18 at 23:51
I believe
ssh will process all matching directives, in order, so in theory you should be able to do something like Match host raspi / User john / HostName 192.168.2.7 followed by Match host raspi exec "[[ $(curl -s ipinfo.io/ip) != '12.345.67.89' ]]" / HostName 12.345.67.89 / Port 1234 and get the same effect with only one curl invocation, letting the == '12.345.67.89' case be assumed by the failure of the second Match rule's exec.– FeRD
Mar 3 '18 at 23:51
(You'd jut have to make sure that every argument specified in the first
Match is either the same or also specified in the second one — if you specified a non-standard Port xxxx in the first Match, and wanted to use the standard port in the second Match, you'd have to explicitly override it back with a Port 22 so it doesn't continue to use port xxxx.)– FeRD
Mar 3 '18 at 23:56
(You'd jut have to make sure that every argument specified in the first
Match is either the same or also specified in the second one — if you specified a non-standard Port xxxx in the first Match, and wanted to use the standard port in the second Match, you'd have to explicitly override it back with a Port 22 so it doesn't continue to use port xxxx.)– FeRD
Mar 3 '18 at 23:56
add a comment |
Assuming your machine has IP 192.168.1.* when connected to your LAN, you can achieve this with the following configuration in ~/.ssh/config so that you can always use the same command (just ssh raspi) to connect:
Match Originalhost raspi Exec "ifconfig | grep 192.168.1."
HostName 192.168.1.2
User john
Port 22
Host raspi
HostName 12.34.56.78
User john
Port 1234
answered Sep 20 '17 at 17:33
CvuorinenCvuorinen
1011
add a comment |
Assuming your machine has IP 192.168.1.* when connected to your LAN, you can achieve this with the following configuration in ~/.ssh/config so that you can always use the same command (just ssh raspi) to connect:
Match Originalhost raspi Exec "ifconfig | grep 192.168.1."
HostName 192.168.1.2
User john
Port 22
Host raspi
HostName 12.34.56.78
User john
Port 1234
answered Sep 20 '17 at 17:33
CvuorinenCvuorinen
1011
add a comment |
Assuming your machine has IP 192.168.1.* when connected to your LAN, you can achieve this with the following configuration in ~/.ssh/config so that you can always use the same command (just ssh raspi) to connect:
Match Originalhost raspi Exec "ifconfig | grep 192.168.1."
HostName 192.168.1.2
User john
Port 22
Host raspi
HostName 12.34.56.78
User john
Port 1234
answered Sep 20 '17 at 17:33
CvuorinenCvuorinen
1011
Assuming your machine has IP 192.168.1.* when connected to your LAN, you can achieve this with the following configuration in ~/.ssh/config so that you can always use the same command (just ssh raspi) to connect:
Match Originalhost raspi Exec "ifconfig | grep 192.168.1."
HostName 192.168.1.2
User john
Port 22
Host raspi
HostName 12.34.56.78
User john
Port 1234
answered Sep 20 '17 at 17:33
CvuorinenCvuorinen
1011
answered Sep 20 '17 at 17:33
CvuorinenCvuorinen
1011
answered Sep 20 '17 at 17:33
CvuorinenCvuorinen
1011
answered Sep 20 '17 at 17:33
CvuorinenCvuorinen
1011
1011
add a comment |
add a comment |
This solution assumes that your home network has a single router which I believe is the common case.
Add to your ~/.ssh/config
Match host raspi exec "test $(arp 192.168.1.1 | awk '{print $4}') = ROUTER_MAC_ADDRESS"
Hostname 192.168.2.7
User john
Host raspi
Hostname 12.345.67.89
Port 1234
User john
answered 17 mins ago
Ellis HoagEllis Hoag
1
New contributor
Ellis Hoag is a new contributor to this site. Take care in asking for clarification, commenting, and answering.
Check out our Code of Conduct.
add a comment |
This solution assumes that your home network has a single router which I believe is the common case.
Add to your ~/.ssh/config
Match host raspi exec "test $(arp 192.168.1.1 | awk '{print $4}') = ROUTER_MAC_ADDRESS"
Hostname 192.168.2.7
User john
Host raspi
Hostname 12.345.67.89
Port 1234
User john
answered 17 mins ago
Ellis HoagEllis Hoag
1
New contributor
Ellis Hoag is a new contributor to this site. Take care in asking for clarification, commenting, and answering.
Check out our Code of Conduct.
add a comment |
This solution assumes that your home network has a single router which I believe is the common case.
Add to your ~/.ssh/config
Match host raspi exec "test $(arp 192.168.1.1 | awk '{print $4}') = ROUTER_MAC_ADDRESS"
Hostname 192.168.2.7
User john
Host raspi
Hostname 12.345.67.89
Port 1234
User john
answered 17 mins ago
Ellis HoagEllis Hoag
1
New contributor
Ellis Hoag is a new contributor to this site. Take care in asking for clarification, commenting, and answering.
Check out our Code of Conduct.
This solution assumes that your home network has a single router which I believe is the common case.
Add to your ~/.ssh/config
Match host raspi exec "test $(arp 192.168.1.1 | awk '{print $4}') = ROUTER_MAC_ADDRESS"
Hostname 192.168.2.7
User john
Host raspi
Hostname 12.345.67.89
Port 1234
User john
answered 17 mins ago
Ellis HoagEllis Hoag
1
New contributor
Ellis Hoag is a new contributor to this site. Take care in asking for clarification, commenting, and answering.
Check out our Code of Conduct.
answered 17 mins ago
Ellis HoagEllis Hoag
1
New contributor
Ellis Hoag is a new contributor to this site. Take care in asking for clarification, commenting, and answering.
Check out our Code of Conduct.
answered 17 mins ago
Ellis HoagEllis Hoag
1
answered 17 mins ago
Ellis HoagEllis Hoag
1
1
New contributor
Ellis Hoag is a new contributor to this site. Take care in asking for clarification, commenting, and answering.
Check out our Code of Conduct.
New contributor
Ellis Hoag is a new contributor to this site. Take care in asking for clarification, commenting, and answering.
Check out our Code of Conduct.
Ellis Hoag is a new contributor to this site. Take care in asking for clarification, commenting, and answering.
Check out our Code of Conduct.
add a comment |
add a comment |
Thanks for contributing an answer to Unix & Linux Stack Exchange!
- Please be sure to answer the question. Provide details and share your research!
But avoid …
- Asking for help, clarification, or responding to other answers.
- Making statements based on opinion; back them up with references or personal experience.
To learn more, see our tips on writing great answers.
Some of your past answers have not been well-received, and you're in danger of being blocked from answering.
Please pay close attention to the following guidance:
- Please be sure to answer the question. Provide details and share your research!
But avoid …
- Asking for help, clarification, or responding to other answers.
- Making statements based on opinion; back them up with references or personal experience.
To learn more, see our tips on writing great answers.
Sign up or log in
StackExchange.ready(function () {
StackExchange.helpers.onClickDraftSave('#login-link');
});
Sign up using Google
Sign up using Facebook
Sign up using Email and Password
Post as a guest
Required, but never shown
StackExchange.ready(
function () {
StackExchange.openid.initPostLogin('.new-post-login', 'https%3a%2f%2funix.stackexchange.com%2fquestions%2f107225%2fssh-access-from-inside-and-outside-a-lan-using-the-same-terminal-command%23new-answer', 'question_page');
}
);
Post as a guest
Required, but never shown
Sign up or log in
StackExchange.ready(function () {
StackExchange.helpers.onClickDraftSave('#login-link');
});
Sign up using Google
Sign up using Facebook
Sign up using Email and Password
Post as a guest
Required, but never shown
Sign up or log in
StackExchange.ready(function () {
StackExchange.helpers.onClickDraftSave('#login-link');
});
Sign up using Google
Sign up using Facebook
Sign up using Email and Password
Post as a guest
Required, but never shown
Sign up or log in
StackExchange.ready(function () {
StackExchange.helpers.onClickDraftSave('#login-link');
});
Sign up using Google
Sign up using Facebook
Sign up using Email and Password
Sign up using Google
Sign up using Facebook
Sign up using Email and Password
Post as a guest
Required, but never shown
Required, but never shown
Required, but never shown
Required, but never shown
Required, but never shown
Required, but never shown
Required, but never shown
Required, but never shown
Required, but never shown
You could run a DNS server on your local lan which responds to the request for the "raspi" name with the local lan ip address. Now resolving that same name to a different outside address would require that name be populated (dynamic dns) in such a way that it also resolves. But you will probably need a longer name than "raspi".
– ChuckCottrill
Dec 30 '13 at 23:31
See this Q&A: unix.stackexchange.com/questions/61655/…
– slm♦
Dec 31 '13 at 2:56