## 背景

在日常开发或者运维中，经常会遇到开发环境与线上环境网络隔离，需要通过跳板机连接的场景，如果需要将目标机器上的定位信息搬迁到开发机做进一步排查时，经常取文件比较费劲，一般操作是将目标文件拷贝到跳板机，再从跳板机拷贝到开发机。本文介绍两种好用的方式。

## 解决办法

### 办法一：编写脚本实现通过跳板机拷贝

- 以下脚本实现了通过跳板机取目标服务器的文件，支持正则表达式匹配。

- tips1：跳板机和目标服务器的密码作为命令行参数传递，未加密。

- tips2：如果sshpass命令不可用，先到跳板机上安装一下yum install sshpass

#!/bin/bash
# 拷贝远程目录下后缀为gz的文件到本地
# ./get_trace.sh -jump_ip xx.xx.xx.xx -jump_pwd xxx -remote_ip xx.xx.xx.xx -remote_pwd xxx -remote_path /root/logs/ -remote_file_suffix gz -local_path /home/bigdisk/05-test/copy_remote/logs/
# 拷贝远程目录/root/logs/下0号pod的所有日志内容到本地
#./get_trace.sh -jump_ip xx.xx.xx.xx -jump_pwd xxx -remote_ip xx.xx.xx.xx -remote_pwd xxx -remote_path /root/logs/ -pod_id 0 -local_path /home/bigdisk/05-test/copy_remote/logs/
# 拷贝远程目录下目录的正则表达式符合.*/i-.*-0的目录下所有内容到本地
# ./get_trace.sh -jump_ip xx.xx.xx.xx -jump_pwd xxx -remote_ip xx.xx.xx.xx -remote_pwd xxx -remote_path /root/logs/ -remote_path_regex .*/i-.*-0 -local_path /home/bigdisk/05-test/copy_remote/logs/
# 跳板机和远程服务器的配置
JUMP_SERVER_USER="root"
JUMP_SERVER="xx.xx.xx.xx" # 改成跳板机IP
JUMP_SERVER_PWD=""
REMOTE_SERVER_USER="root"
REMOTE_SERVER=""
REMOTE_SERVER_PWD="" 
REMOTE_PATH_REGEX=""
REMOTE_FILE_SUFFIX=""
REMOTE_PATH="/root/logs/" # 支持正则表达式，例如：
LOCAL_PATH="./"
# 创建本地路径，如果它不存在的话
# mkdir -p "$LOCAL_PATH"# ###################### script started ######################
while [ $# -gt 0 ]; dokey="$1"case $key in-h)shiftecho "use like this: -jump_ip xx.xx.xx.xx -jump_pwd xxxxx -remote_ip xx.xx.xx.xx -remote_pwd xxxxx -remote_path /path/to/remote/directory/* -local_path /path/to/local/directory"echo "or use like this: -jump_ip xx.xx.xx.xx -jump_pwd xxxxx -remote_ip xx.xx.xx.xx -remote_pwd xxxxx -remote_path_regex .*/i-.*-19 -local_path /path/to/local/directory";;-jump_ip)shiftJUMP_SERVER="$1"echo "jump_ip is ${JUMP_SERVER}";;-jump_pwd)shiftJUMP_SERVER_PWD="$1";;-remote_ip)shiftREMOTE_SERVER="$1"echo "remote_ip is ${REMOTE_SERVER}";;-remote_pwd)shiftREMOTE_SERVER_PWD="$1";;-remote_path)shiftREMOTE_PATH="$1"echo "remote_path is ${REMOTE_PATH}";;-pod_id)shiftREMOTE_POD_ID="$1"REMOTE_PATH_REGEX=".*/i-.*-$REMOTE_POD_ID"echo "remote_pod id is ${REMOTE_POD_ID}, remote_path_regex is ${REMOTE_PATH_REGEX}";;-remote_path_regex)shiftREMOTE_PATH_REGEX="$1"echo "remote_path_regex is ${REMOTE_PATH_REGEX}";;-remote_file_suffix)shiftREMOTE_FILE_SUFFIX="$1"echo "remote_file_suffix is ${REMOTE_FILE_SUFFIX}";;-local_path)shiftLOCAL_PATH="$1"echo "local_path is ${LOCAL_PATH}";;*)echo "ERROR: unknown option \"$key\""echousageexit 1;;esacshift
done# 使用 sshpass 和 SSH ProxyCommand 通过跳板机获取文件
if [ -z "$REMOTE_PATH_REGEX" ]; thenecho "remote_path_regex is empty"
elseecho "remote_path is ${REMOTE_PATH}/${REMOTE_PATH_REGEX}"REMOTE_PATH=$(sshpass -p ${REMOTE_SERVER_PWD} ssh -o ProxyCommand="sshpass -p ${JUMP_SERVER_PWD} ssh -W %h:%p -o StrictHostKeyChecking=no ${JUMP_SERVER_USER}@${JUMP_SERVER}" -o StrictHostKeyChecking=no ${REMOTE_SERVER_USER}@${REMOTE_SERVER} "find ${REMOTE_PATH} -type d -regextype egrep -regex '${REMOTE_PATH_REGEX}' -print -quit")if [ -z "$REMOTE_PATH" ]; thenecho "没有找到匹配的远程目录"elseecho ${REMOTE_PATH}/${REMOTE_PATH_REGEX}fi
fi# find remote path and get all files
if [ -z "$REMOTE_FILE_SUFFIX" ]; thenecho "remote_file_suffix is empty, get all files"sshpass -p ${REMOTE_SERVER_PWD} ssh -o ProxyCommand="sshpass -p ${JUMP_SERVER_PWD} ssh -W %h:%p -o StrictHostKeyChecking=no ${JUMP_SERVER_USER}@${JUMP_SERVER}" -o StrictHostKeyChecking=no ${REMOTE_SERVER_USER}@${REMOTE_SERVER} "tar czf - -C ${REMOTE_PATH} ." | tar xzf - -C ${LOCAL_PATH}
elseecho "remote path:${REMOTE_PATH} remote_file_suffix is ${REMOTE_FILE_SUFFIX}, get all this type files" sshpass -p ${REMOTE_SERVER_PWD} ssh -o ProxyCommand="sshpass -p ${JUMP_SERVER_PWD} ssh -W %h:%p -o StrictHostKeyChecking=no ${JUMP_SERVER_USER}@${JUMP_SERVER}" -o StrictHostKeyChecking=no ${REMOTE_SERVER_USER}@${REMOTE_SERVER} "cd ${REMOTE_PATH} && tar czf - -C ${REMOTE_PATH} -- *.${REMOTE_FILE_SUFFIX}" | tar xzf - -C ${LOCAL_PATH}
fi

### 办法二：安装软件WindTerm

- github地址：GitHub - kingToolbox/WindTerm: A professional cross-platform SSH/Sftp/Shell/Telnet/Serial terminal.A professional cross-platform SSH/Sftp/Shell/Telnet/Serial terminal. - kingToolbox/WindTermhttps://github.com/kingToolbox/WindTerm

- 方法：1）先创建跳板机的ssh连接 2）再创建远程服务器的ssh，同时选择代理链接为跳板机。