Host *
     AddKeysToAgent ask
     AddressFamily inet
     BatchMode no
     BindAddress 1.1.1.1
     BindInterface en0
     CanonicalDomains abc.com xyz.com
     CanonicalizeFallbackLocal yes
     CanonicalizeHostname none
     CanonicalizeMaxDots 2
     CanonicalizePermittedCNAMEs *.a.example.com:*.b.example.com,*.c.example.com
     CASignatureAlgorithms ssh-ed25519,ecdsa-sha2-nistp256,ecdsa-sha2-nistp384,ecdsa-sha2-nistp521,sk-ssh-ed25519@openssh.com
     CertificateFile ~/certificates/cert1.pem
     CertificateFile ~/certificates/cert2.pem
     CheckHostIP yes
     Ciphers 3des-cbc,aes128-cbc,aes192-cbc
     ClearAllForwardings yes
     Compression yes
     ConnectionAttempts 9
     ConnectTimeout 30
     ControlMaster ask
     ControlPath none
     ControlPersist yes
     DynamicForward 1.1.1.1:443
     EnableEscapeCommandline no
     EnableSSHKeysign yes
     EscapeChar none
     ExitOnForwardFailure yes
     FingerprintHash md5
     ForkAfterAuthentication yes
     ForwardAgent $mypath
     ForwardX11 no
     ForwardX11Timeout 500
     ForwardX11Trusted yes
     GatewayPorts yes
     GlobalKnownHostsFile /etc/ssh/ssh_known_hosts /etc/ssh/ssh_known_hosts2
     GSSAPIAuthentication yes
     GSSAPIDelegateCredentials yes
     HashKnownHosts yes
     HostbasedAcceptedAlgorithms ssh-ed25519-cert-v01@openssh.com,ecdsa-sha2-nistp256-cert-v01@openssh.com
     HostbasedAuthentication yes
     HostKeyAlgorithms ssh-ed25519-cert-v01@openssh.com,ecdsa-sha2-nistp256-cert-v01@openssh.com
     HostKeyAlias foobar
     Hostname localhost
     IdentitiesOnly yes
     IdentityAgent SSH_AUTH_SOCK
     IdentityFile ~/.ssh/vps1.cyberciti.biz.key
     IdentityFile ~/.ssh/vps2.cyberciti.biz.key
     IgnoreUnknown helloworld
     Include ~/.ssh/config-extras ~/foo/bar
     Include ~/.ssh/config-extra-extras
     IPQoS af11 af12
     KbdInteractiveAuthentication yes
     KbdInteractiveDevices bsdauth,pam,skey
     KexAlgorithms +sntrup761x25519-sha512@openssh.com,curve25519-sha256,curve25519-sha256@libssh.org
     KnownHostsCommand ~/checkknownhosts
     LocalCommand ~/mycommand
     LocalForward 3128 127.0.0.1:3128
     LocalForward 3129 127.0.0.1:3129
     LogLevel INFO
     LogVerbose kex.c:*:1000,*:kex_exchange_identification():*,packet.c:*
     MACs ^umac-64-etm@openssh.com,umac-128-etm@openssh.com,hmac-sha2-256-etm@openssh.com,hmac-sha2-512-etm@openssh.com
     NoHostAuthenticationForLocalhost yes
     NumberOfPasswordPrompts 3
     PasswordAuthentication yes
     PermitLocalCommand yes
     PermitRemoteOpen 1.1.1.1:443 2.2.2.2:443
     PKCS11Provider ~/pkcs11provider
     Port 22
     PreferredAuthentications gssapi-with-mic,hostbased,publickey,keyboard-interactive,password
     Protocol 2
     ProxyCommand  ssh nixcraft@gateway.uk.cyberciti.biz nc %h %p 2> /dev/null
     ProxyJump 1.1.1.1:22,2.2.2.2:22
     ProxyUseFdpass yes
     PubkeyAcceptedAlgorithms -ssh-ed25519-cert-v01@openssh.com,ecdsa-sha2-nistp256-cert-v01@openssh.com
     PubkeyAuthentication unbound
     RekeyLimit 4G
     RemoteCommand ~/mycommand
     RemoteForward 1.1.1.1:22 2.2.2.2:22
     RequestTTY force
     RequiredRSASize 2048
     RevokedHostKeys ~/revokedkeyfile
     SecurityKeyProvider ~/keyprovider
     SendEnv ENV1 ENV2
     SendEnv ENV3
     ServerAliveCountMax 3
     ServerAliveInterval 3
     SessionType none
     SetEnv ENV1 ENV2
     SetEnv ENV3
     StdinNull yes
     StreamLocalBindMask 0000
     StreamLocalBindUnlink yes
     StrictHostKeyChecking ask
     SyslogFacility USER
     TCPKeepAlive yes
     Tunnel ethernet
     TunnelDevice tun1:tun2
     UpdateHostKeys ask
     User nixcraft
     UserKnownHostsFile ~/.ssh/knownhosts1 ~/.ssh/knownhosts2
     VerifyHostKeyDNS ask
     VisualHostKey yes
     XAuthLocation /usr/X11R6/bin/xauth

