Skip to content

Overview

To ease usage of the bastion host to easily connect to Trixie, there are some steps which can be taken, especially making use of the SSH ProxyJump and ControlMaster parameters. Basically, you need to configure SSH to automatically connect with the Trixie server using the bastion host as a connector between your local computer and the Trixie server.

Important Note: Before proceeding with this configuration, please ensure that you have performed the Internal Access Setup procedure.

Mac OSX / Linux

To configure SSH to automatically connect to the Trixie server, please perform the following steps

  1. Create the folder .ssh/sockets
  2. Open your .ssh/config file with your preferred text editor and add the following lines on your local machine – not the servers – while substituting your given usernames in the User directive.
    TIP: Some users have reported that using doej did not work for their PUB username. Please try using the first.last format - for example john.doe - for your PUB username if doej doesn't work for you
Host trixie-bastion
  HostName trixie.nrc-cnrc.gc.ca
  User <username>@pub.nrc-cnrc.gc.ca 
  ControlMaster auto
  ControlPath ~/.ssh/sockets/%r@%h-%p

Host trixie
  HostName trixie.res.nrc.gc.ca 
  User <username>
  ProxyJump trixie-bastion

Once your settings are configured, you will be able to login to the Trixie server with the following command

ssh trixie

Please note that you will be prompted as follows

  1. Prompt for your PUB password
  2. LoginTC prompt – enter 1
  3. Prompt for your SRN password

Windows – Putty

To configure SSH to automatically connect to the Trixie server, please set the following settings in your Putty application, substituting your username where applicable.

  1. Under Connection -> Proxy
    1. From the Proxy type dropdown, select: SSH to proxy and use port forwarding
    2. Set Proxy hostname: trixie.nrc-cnrc.gc.ca
    3. Set Port: 22
    4. Set Username: <username>@pub.nrc-cnrc.gc.ca
    5. Leave Password blank - do not fill it in
      trixie putty
  2. Under Connection -> SSH -> X11
    1. Select the option Enable X11 forwarding
      putty
  3. Under Session
    1. Set Host Name (or IP address): <username>@trixie.res.nrc.gc.ca
    2. Set Port: 22
    3. Add a name for Saved Sessions – perhaps Trixie
      putty
  4. Click Save

Once the settings have been saved, you can double click on the name in the list of Saved Sessions to open a session to the Trixie server. Please note that you will be prompted as follows

  1. Prompt for your PUB password
  2. LoginTC prompt – enter 1
  3. Prompt for your SRN password

Related Topics

Internal Access Setup
External Access Setup
External Access Advanced Configuration
File Transfers