Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

salt-ssh should build a simple tunnel to forward zeromq between a local temporary master and a remote temporary minion #58762

Closed
baby-gnu opened this issue Oct 19, 2020 · 3 comments
Closed

salt-ssh should build a simple tunnel to forward zeromq between a local temporary master and a remote temporary minion #58762

baby-gnu opened this issue Oct 19, 2020 · 3 comments
Assignees
@Ch3LL
Labels
Feature new functionality including changes to functionality and code refactors, etc.
Milestone
Approved

Comments

@baby-gnu
Copy link

Is your feature request related to a problem? Please describe.

It's not possible to use several standard feature of salt with salt-ssh:

Describe the solution you'd like

The salt-ssh command tunneled a full master / minion connexion using zeromq:

  • start a local master:
    • listen on 127.0.0.1
    • random publish_port
    • random ret_port
  • open a connexion to a minion with SSH
    • transfert master ports locally:
      • listen on the minion 127.0.0.1
      • random publish_port on the minion piped to master random publish_port
      • random ret_port on the minion piped to master random ret_port
    • start a temporary minion with the proper options to contact the temporary master
      • master is 127.0.0.1 to reach the local endpoint of the tunnel
      • master_port is local random ret_port
      • publish_port is local random publish_port

Describe alternatives you've considered

None.

Additional context

Please Note
If this feature request would be considered a substantial change or addition, this should go through a SEP process here https://github.com/saltstack/salt-enhancement-proposals, instead of a feature request.
@baby-gnu baby-gnu added the Feature new functionality including changes to functionality and code refactors, etc. label Oct 19, 2020
@baby-gnu
Copy link
Author

As I'm not sure it's a substantial change, I open this feature request.

Tell me if you prefer an issue in https://github.com/saltstack/salt-enhancement-proposals.

Regards.

@baby-gnu baby-gnu mentioned this issue Oct 19, 2020
Open
@Ch3LL
Copy link
Contributor

Ch3LL commented Oct 20, 2020

There is this project https://gitlab.com/saltstack/pop/heist that will solve this problem :)

@Ch3LL Ch3LL closed this as completed Oct 20, 2020
@Ch3LL Ch3LL added this to the Approved milestone Oct 20, 2020
@baby-gnu
Copy link
Author

There is this project https://gitlab.com/saltstack/pop/heist that will solve this problem :)

In one use case, I have several users connecting to a salt-ssh machine where everything is in place for them to call salt-ssh as users.

I may miss something but heist seems to require a salt-master service running.

Regards.

@foudfou foudfou mentioned this issue Nov 1, 2020
Open
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Assignees

@Ch3LL Ch3LL

Labels
Feature new functionality including changes to functionality and code refactors, etc.
Projects
None yet
Milestone
Approved
Development

No branches or pull requests
3 participants
@baby-gnu @Ch3LL @sagetherage