Multiple jump-host problem

Hello,

Thank you for reaching out regarding this matter.

I am currently investigating this with the assistance of our development team. I will follow up with you as soon as I have additional information regarding the VPN/Tunnel/Gateway entry type with the SSH Gateway.

Thank you for your patience.

Best regards,

Hello,

Thank you for your patience,

I wanted to follow up with a clarification on how the SSH Gateway entry works when multiple hosts are listed.
Multiple hosts = chained jump hosts, not failover. The list of hosts in an SSH Gateway entry maps directly to SSH's -J (ProxyJump) parameter:

ssh -J user@jump1,user@jump2 user@target

This means RDM will connect to host 1 first, then tunnel through host 1 to reach host 2, and so on, each hop is a sequential step, not an alternative. If the first host isn't reachable, the chain stops there; RDM will not attempt the second host independently.

"Detect reachable host in wait" is a separate option that probes the final target to avoid waiting for the full VPN timeout, it doesn't affect which jump host is tried.
If your two IPs are two independent paths to your targets (i.e., two separate bastions, not two sequential hops), the correct setup would be:

• Create one SSH Gateway entry per jump host
• Create one session entry per target, each linked to the appropriate gateway

There is currently no built-in failover mechanism where RDM automatically tries a second jump host if the first is unavailable, this is not supported by the underlying SSH -J parameter either.
If this is a feature you'd find valuable, I'd encourage you to submit a feature request on our forum so our product team can evaluate it. If you'd like, I can also convert this thread into a feature request on your behalf, just let me know.

Best regards,