Home
Help
Search
Login
Register
OPNsense Forum
»
English Forums
»
General Discussion
»
ssh id files with ha clusters
« previous
next »
Print
Pages: [
1
]
Author
Topic: ssh id files with ha clusters (Read 1480 times)
GaardenZwerch
Full Member
Posts: 104
Karma: 2
ssh id files with ha clusters
«
on:
July 29, 2020, 11:27:18 am »
Hi,
when building clusters, is it safe to use the same /conf/sshd files on all nodes?
I need to trigger commands via ssh on the active node and I get conflicts because of .known_hosts otherwise.
Is there another way of handling the situation that a given IP can present different keys to ssh?
Thanks,
Frank
Logged
franco
Administrator
Hero Member
Posts: 17665
Karma: 1611
Re: ssh id files with ha clusters
«
Reply #1 on:
July 29, 2020, 01:15:42 pm »
Hi Frank,
Individual keys are normal for devices that have separate IP addresses. But since you are accessing the same CARP IP I presume you can safely copy the keys from one machine to the next manually.
We don't want to handle key merge / replacement in case it differs from user expectation and since keys were never included in config.xml it's hard to recover them if we automate it.
Cheers,
Franco
Logged
GaardenZwerch
Full Member
Posts: 104
Karma: 2
Re: ssh id files with ha clusters
«
Reply #2 on:
July 29, 2020, 02:05:12 pm »
Thanks!
Logged
Print
Pages: [
1
]
« previous
next »
OPNsense Forum
»
English Forums
»
General Discussion
»
ssh id files with ha clusters