Gravitational Teleport简单使用
使用官方提供的二进制包进行快速启动测试,详细细节还需要在学习
下载软件包
mac 系统
https://gravitational.com/teleport/download/
wget https://get.gravitational.com/teleport-v3.1.1-darwin-amd64-bin.tar.gz
安装
解压软件包
sudo ./install
运行&&测试
- 运行
sudo teleport start
效果
sudo teleport start
[AUTH] Auth service is starting on 0.0.0.0:3025.
[NODE] Service is starting on 0.0.0.0:3022.
[PROXY] Reverse tunnel service is starting on 0.0.0.0:3024.
[PROXY] Web proxy service is starting on 0.0.0.0:3080.
[PROXY] SSH proxy service is starting on 0.0.0.0:3023.
- 添加用户
sudo tctl users add $USER
效果
sudo tctl users add $USER
Signup token has been created and is valid for 1 hours. Share this URL with the user:
https://bogon:3080/web/newuser/fbf33530695567ed71d4a3ce5c62c3bb
NOTE: Make sure bogon:3080 points at a Teleport proxy which users can access
- 登录并使用2ft
界面
- web 终端连接
- 使用tsh cli
tsh --proxy=localhost --insecure login
tsh ssh localhost
说明
tctl 功能很方便,可以进行node 的添加,同时进行node label 的添加
如下:
users add Generate a user invitation token
users ls List all user accounts
users rm Deletes user accounts
nodes add Generate a node invitation token
nodes ls List all active SSH nodes within the cluster
tokens add Create a invitation token
tokens rm Delete/revoke an invitation token
tokens ls List node and user invitation tokens
auth export Export public cluster (CA) keys to stdout
auth sign Create an identity file(s) for a given user
auth rotate Rotate certificate authorities in the cluster
create Create or update a Teleport resource from a YAML file
rm Delete a resource
get Print a YAML declaration of various Teleport resources
status Report cluster status
version Print cluster version
