Linux – Finding IP or hostname of origin machine (ssh)

environment-variableshostnamelinuxsshssh-tunnel

I connect to a number of machines constantly, from different physical locations (and thus different physical machines). Most of this is done though ssh, sometimes a gateway machine or two is required (which I invoke via ProxyCommand in ~/.ssh/config). I'd like to know if there's a method to identify the IP or hostname of the machine that calls the initial connection (ie the machine I'm working on) at the remote end?

I don't want to send environment variables as some machines I don't have root to set PermitUserEnvironment.
The $SSH_CLIENT environment variable is useful for direct connections, but only lists the most recent gateway.

My current idea for a solution is to grab $SSH_CLIENT, ssh to it, find that machine's $SSH_CLIENT value and repeat until it doesn't exist; then grab the hostname and pull it back somehow.

Seems like a bit of a hack job though; does anyone have a better method?

I'm working in a bash shell mostly, but I'm also happy for any suggestions that don't use it too.

Best Answer

I have never tried, but I can think of something that may work: You do not let SSH start your login shell, but take matters in your own hands. You can tell SSH to run arbitrary commands. Instead of

ssh remote_host

you would run something along the lines of

ssh remote_host -t "
    . /etc/profile; 
    . /etc/bash.bashrc; 
    DAT_ORIGIN_HOST=$(ifconfig eth0|grep -Po 't addr:\K[\d.]+') /bin/bash -l -i"

What this does is, it gives SSH something else to do instead of launching a login shell. That something is a string, which will be run as command, remotely. We use this to launch a shell in a very special manner: we give it an environmental variable DAT_ORIGIN_HOST, which contains our ip on eth0 (you may need to change that).

The trick we perform is that we put the command to execute remotely in double qoutes ". The double quotes (at least in Bash) mean, that BEFORE THE STRING IS PASSED TO SSH, our shell scans it and performs expansions/replacements, where appropriate. This means our shell will evaluate the `$(ifconfig ...) part, to our current ip address and pass ssh a string which contains the definition for an environmental variable with our local ip address.

Once logged in to the remote machine, echo $DAT_ORIGIN_HOST should print your IP address.

To develop that call to SSH I shamelessly took from here for extracting the IP address and here for the -t and how to launch something interactive

Disclaimer: I am unsure about the -l and -i option to /bin/bash. Maybe you need to omit them.

Related Solutions

How to get HostName from executable script in SSH config file

~/.ssh/config:

Host cluster
    ProxyCommand ~/bin/cluster-connect

~/bin/cluster-connect:

#!/bin/bash
socat stdio tcp:$(get_host):22

Non-interactive one-time ssh && scp for 100 servers

I will assume that these are all Linux hosts and that you have root access to them. I will also assume that they are using apt for package management, but it is easy to apply this solution with yum or pacman or any other package manager.

As far as I know, ssh offers no way of specifying a password on the command line so first you will need to install sshpass on your local machine:

sudo apt-get install sshpass

This will allow you to pass the password as a command line argument:

sshpass -p '<password>' ssh user@server

Now, create a file with all the IPs you are interested in, one per line. You can parse this file to install sshpass on each remote machine. If your password is foo and you are connecting as root, you can do

while read ip; do 
 sshpass -p 'foo' ssh root@$ip "apt-get install sshpass"; 
done < ips.txt

sshpassis now installed on each server. Now, go through the servers again, and copy your files. If you are copying as root and the root password for your destination is bar, do this:

while read ip; do 
 sshpass -p 'foo' ssh root@$ip "sshpass -p 'bar' scp files dest:/results/"; 
done < ips.txt

You can also use sshpass to copỳ your key files and --as long as you've used an empty passphrase-- allow passwordless access so you don't have this problem next time around:

while read ip; do 
   sshpass -p 'foo' ssh root@$ip \
      "sshpass -p 'bar' ssh-copy-id -i ~/.ssh/id_rsa.pub root@destination";
done < ips.txt

Once that is done, you will be able to copy the files over using:

while read ip; do ssh root@$ip "scp files dest:/results/"; done < ips.txt

Best Answer

Related Solutions

How to get HostName from executable script in SSH config file

Non-interactive one-time ssh && scp for 100 servers

Related Question