Best practices for having a SSH jumphost

R

rogierl

Member
Proxmox Subscriber
May 23, 2021
54
10
13
44
Netherlands
rogier.lommers.org
Hey all,
I'm a happy proxmox user for my home server; working great! Now that past few months I used tailscale as my mesh/vpn solution, but that's overkill to me.
Therefore I'm now checking out a SSH jump server. Now I'm wondering what the best approach is here. I can think of many options:

  1. Running a VM on proxmox, dedicated to be a SSH jumphost.
  2. Adding a new user (SSH only) to the proxmox host, so use the proxmox host itself as the jumphost
  3. Using LXC for that
What are your ideas? Any help/tips more than welcome!
 
Unprivileged container should be good enough but an unprivileged container inside a VM might be better. I moved on to using wireguard and routing instead of jumphosts. I run the wireguard service in unprivileged containers and simple iptables routing on the host, or physical OpenWrt routers.
 
You must log in or register to reply here.
Top Bottom