I would like to distribute SSH connections to different servers based on the userID presented by the client. Unfortunately that attribute is only exchanged once the cryptography is up and running within the SSH protocol. I think this means that I would need SSH profiles that behave in a similar fashion to the SSL profiles and ideally some iRule commands that allow me to easily access various attributes of the SSH protocol once it has been de-crypted.
Is there such a thing that I am unaware of? Can anyone suggest an alternative approach?
Hey James, I'm successfully proxying my ssh connections through the F5 with the SSH Proxy protocol. Any idea how I'd now be able to route my connection based on username? I don't see any obvious irule commands that might supply the connections username.