需求:我们需要从11.0.1.17远程到11.0.1.16上执行命令
实现:
1.让11.0.1.17 可以免密登录到11.0.1.16
[root@localhost ~]# ssh-keygen
Generating public/private rsa key pair.
Enter file in which to save the key (/root/.ssh/id_rsa):
Created directory '/root/.ssh'.
Enter passphrase (empty for no passphrase):
Enter same passphrase again:
Your identification has been saved in /root/.ssh/id_rsa.
Your public key has been saved in /root/.ssh/id_rsa.pub.
The key fingerprint is:
SHA256:bu287XmVZ6enpUciggpz71Q7e5kfKYqVMTcM5bDD8eU root@localhost.localdomain
The key's randomart image is:
+---[RSA 2048]----+
| o . . |
| . B o |
| = o E |
| + |
| S.+ + .|
| o ...o.*...o*|
| + o+ *..+o*+|
| .o.= =+oo+o|
| .o *++o++ |
+----[SHA256]-----+
[root@localhost ~]# ssh-copy-id -i .ssh/id_rsa.pub root@11.0.1.16
/usr/bin/ssh-copy-id: INFO: Source of key(s) to be installed: ".ssh/id_rsa.pub"
The authenticity of host '11.0.1.16 (11.0.1.16)' can't be established.
ECDSA key fingerprint is SHA256:Zedce2a7sFWF3pYJaVtedqST+SsG1zbPZ7Y4rGiEpB0.
ECDSA key fingerprint is MD5:57:75:f6:6f:68:ba:b2:b8:38:0f:55:96:c9:19:d6:29.
Are you sure you want to continue connecting (yes/no)? yes
/usr/bin/ssh-copy-id: INFO: attempting to log in with the new key(s), to filter out any that are already installed
/usr/bin/ssh-copy-id: INFO: 1 key(s) remain to be installed -- if you are prompted now it is to install the new keys
root@11.0.1.16's password:
Number of key(s) added: 1
Now try logging into the machine, with: "ssh 'root@11.0.1.16'"
and check to make sure that only the key(s) you wanted were added.
2.在脚本中实现我们想要的功能
[root@localhost ~]# cat test.sh
#!/bin/bash
ssh root@11.0.1.16 <<remotessh
mkdir test
ls -la test
ifconfig
exit
remotessh
[root@localhost ~]# sh test.sh
Pseudo-terminal will not be allocated because stdin is not a terminal.
总用量 4
drwxr-xr-x 2 root root 6 7月 15 09:38 .
dr-xr-x---. 8 root root 4096 7月 15 09:38 ..
ens33: flags=4163<UP,BROADCAST,RUNNING,MULTICAST> mtu 1500
inet 11.0.1.16 netmask 255.255.255.0 broadcast 11.0.1.255
inet6 fe80::20c:29ff:fe00:9681 prefixlen 64 scopeid 0x20<link>
ether 00:0c:29:00:96:81 txqueuelen 1000 (Ethernet)
RX packets 95760 bytes 67679836 (64.5 MiB)
RX errors 0 dropped 0 overruns 0 frame 0
TX packets 45061 bytes 3990000 (3.8 MiB)
TX errors 0 dropped 0 overruns 0 carrier 0 collisions 0
lo: flags=73<UP,LOOPBACK,RUNNING> mtu 65536
inet 127.0.0.1 netmask 255.0.0.0
inet6 ::1 prefixlen 128 scopeid 0x10<host>
loop txqueuelen 1 (Local Loopback)
RX packets 24 bytes 2547 (2.4 KiB)
RX errors 0 dropped 0 overruns 0 frame 0
TX packets 24 bytes 2547 (2.4 KiB)
TX errors 0 dropped 0 overruns 0 carrier 0 collisions 0