Thanks, that should be a relatively recent addition. Looking at the changelog it seems it has been introduced in version 5.4:

* Added a 'netcat mode' to ssh(1): "ssh -W host:port ..." This connects
stdio on the client to a single port forward on the server. This
allows, for example, using ssh as a ProxyCommand to route connections
via intermediate servers. bz#1618

So I guess it could be used as something like (to keep the example in the article)

Host internal1
User root
ProxyCommand ssh -W 192.168.0.1:22 user@firewall

And indeed it works (with VisualHostKey ASCII art to make it more evident):

$ ssh internal1
Host key fingerprint is 01:b0:7a:87:ff:13:36:26:bd:e4:1c:ae:78:1f:72:34
+--[ RSA 1024]----+
|    ...          |
|     . .         |
|    .   .        |
|   +     .       |
| E+ .   S        |
|. .o             |
|....+            |
|oo.**o.          |
|o.o==+..         |
+-----------------+

Host key fingerprint is 90:47:e7:f8:a6:53:fa:14:4c:ff:3a:b3:9f:b7:ea:c0
+--[ECDSA  256]---+
|         .o .    |
|         o +     |
|        o o .    |
|         + o     |
|        S o =    |
|       .   * .   |
|        E =   .  |
|         +oo..   |
|         .*B+.   |
+-----------------+

Last login: Wed Oct  5 16:48:36 2011 from 10.18.0.233
internal1 #

Thanks!

i have a simliar problem then the other(s). I want to rsync between two server which i connected with Proxycommand. The Problem is the following. I have to sync from root to user httpd but my rsync can just log into user@privatserver.

If i just want to ssh to the server and switch the user "ssh -t privatserver 'sudo su - httpd' works fine but i dont know who to teach this to either rsync or Proxycommand. Do you have an solution ?

Thanks for the awesome tutorial

greetings luccino

PS: i hope you can understand what i mean, not sure about my english skills :P