lrajlich / aws-ssh Goto Github PK

This project is meant to facilitate ssh'ing into aws servers. Uses ec2 describe-instances to build a map of instance name to ssh host. Subsequently, a user can ssh using the instance name.

This library requires awscli (http://docs.aws.amazon.com/cli/latest/index.html) and jq (http://stedolan.github.io/jq/). Awscli can be installed via pip (which in turn can be installed via brew) and jq can be installed via brew.

brew install pip
pip install awscli
brew install jq
git clone [email protected]:lrajlich/aws-ssh.git
cd aws-ssh
make install

Make sure your AWS cli is configured, following steps here: (http://docs.aws.amazon.com/cli/latest/reference/configure/index.html)

In addition, this project has a "config" file, in the root folder of the project, to be modified as needed, with 3 parameters:

1. user - user used to connect to AWS hosts
2. pem - pem file used for ssh key authentication with aws servers
3. host_xpath - Host to determine the host from the output of describe-instances. Some examples:

• .PublicIpAddress - Use Public ip address as ssh host
• .PrivateIpAddress - Use Private IP Address as ssh host
• .PublicDnsName - Use Public DNS name as ssh host
• .PrivateDnsName - Use Private DNS name as ssh host

If you edit the config file from the directory you git cloned into, you will have to run make install again as the config used by the command line is in the installed directory - /usr/local/aws-ssh/config (which installed via Make install).

• aws-ssh help show available commands

• aws-ssh ls show a list of aws instances

LUKEs-MacBook-Pro:~ lrajlich$ aws-ssh ls
app-01
app-02
app-03
consumer-01
consumer-02
consumer-03
resque-01

• aws-ssh ls --help Show list of options
  • -d show details like instance id and ip address. Tab delimited
  • -r manually refresh the instance list (by default, it will use local cached list for speed)

• aws-ssh app-01 Connect to server named app-01
  • This operates on grepping for the string, so things like aws-ssh con.*-01 will work
  • You can also connect using instance_id or ip address from aws-ssh ls -d

Scripting is fairly straightforward - aws-ssh ls -d is tab delimited and can be used for a number of use cases

• aws-ssh ls -d | grep app-01 | cut -f 2 Get instance id for app-01, usage for AWS api operations on that server
• aws-ssh ls -d | cut -f 3 | perl -pe "s/\n/,/g" Get comma seperated list of ip address, which can be used as argument to [pdsh -w](http://linux.die.net/man/1/pdsh parameter)

You can have aws-ssh updates it's listing automatically, though this requires a manual step. This is run off a cron job. First you need to create log directories for aws-ssh auto refresh. When auto refresh runs, any stdout and stderr will be written to this location.

sudo mkdir -p /var/log/aws-ssh
sudo chown `whoami` /var/log/aws-ssh

run crontab -e. In Vim, enter the following line

*/5 * * * * /usr/local/aws-ssh/aws-ssh-auto-refresh >> /var/log/aws-ssh/cron.log 2>> /var/log/aws-ssh/cron.log

Press esc and then ZZ. This will install your cron tab (if you don't have one). Otherwise, you can do a simple write+quit vim operation.