Working example of multiple permitopen options in authorized_keys

ssh ssh-keys ssh-tunnel

I have a working key in .ssh/authorized_keys with a single permitopen option configured. I went to add an additional permitopen and it does not allow tunnels to the new server. The documentation says:

Multiple PermitOpen options may be applied to the same public key if they are separated by commas and thus a key can allow multiple ports.

However, the documentation does not show any examples. Can someone provide a working example? I've tried both the following:

permitopen="host-1:3389",permitopen="host-2:3389" ssh-rsa AAAAC...

and

permitopen="host-1:3389,host-2:3389" ssh-rsa AAAAC...


Solution 1:

I've gotten it to work. The first example above works.

permitopen="host-1:3389",permitopen="host-2:3389" ssh-rsa AAAAC...

In my case it was not working because the host name is case-sensitive.

I was using the following command to connect:

ssh -f user@tunneler -L 10001:host-1:3389 -L 10002:HOST-2:3389 -N

which failed due to the capitalization of the second hostname.

ssh -f user@tunneler -L 10001:host-1:3389 -L 10002:host-2:3389 -N worked.

It must match exactly what is in the permitopen option.

Related

Unable to mount kerberized nfs?
Public and Private keys incorrect for user
What are the security implications of using allow.sysvipc in a FreeBSD jail
KVM guest doesn't recognize new size of raw disk after lvresize
Installing ODBC driver 13 for MSSQL Server in Amazon Linux on EC2 instance
Postfix Limit mail for domain from IP range
SELinux is preventing Perl CGI script from accessing Oracle libraries
Dovecot: Email clients and duplicated folders
Apache mpm worker + wsgi Python/Django workers stuck
Directly Formatting a Device on a Linux System
Replace MyISAM files without stopping Mysql
Can you tell by the network traffic whether a video was watched or downloaded from YouTube?