Gravitational Teleport简单使用

使用官方提供的二进制包进行快速启动测试，详细细节还需要在学习

下载软件包

mac 系统

https://gravitational.com/teleport/download/

wget https://get.gravitational.com/teleport-v3.1.1-darwin-amd64-bin.tar.gz

安装

解压软件包

sudo ./install 

 

运行&&测试

• 运行

sudo teleport start

效果

sudo teleport start

[AUTH] Auth service is starting on 0.0.0.0:3025.

[NODE] Service is starting on 0.0.0.0:3022.

[PROXY] Reverse tunnel service is starting on 0.0.0.0:3024.

[PROXY] Web proxy service is starting on 0.0.0.0:3080.

[PROXY] SSH proxy service is starting on 0.0.0.0:3023.

 

 

• 添加用户

sudo tctl users add $USER

 

效果

sudo tctl users add $USER

Signup token has been created and is valid for 1 hours. Share this URL with the user:

https://bogon:3080/web/newuser/fbf33530695567ed71d4a3ce5c62c3bb

​

NOTE: Make sure bogon:3080 points at a Teleport proxy which users can access

​

• 登录并使用2ft
  界面
  
  
• web 终端连接
  
  
• 使用tsh cli

 

tsh --proxy=localhost --insecure login

tsh ssh localhost

说明

tctl 功能很方便，可以进行node 的添加，同时进行node label 的添加
如下：

 

  users add Generate a user invitation token

  users ls List all user accounts

  users rm Deletes user accounts

  nodes add Generate a node invitation token

  nodes ls List all active SSH nodes within the cluster

  tokens add Create a invitation token

  tokens rm Delete/revoke an invitation token

  tokens ls List node and user invitation tokens

  auth export Export public cluster (CA) keys to stdout

  auth sign Create an identity file(s) for a given user

  auth rotate Rotate certificate authorities in the cluster

  create Create or update a Teleport resource from a YAML file

  rm Delete a resource

  get Print a YAML declaration of various Teleport resources

  status Report cluster status

  version Print cluster version

参考资料

https://gravitational.com/teleport/docs/quickstart/