diff --git a/playbooks/adm.yml b/playbooks/adm.yml
index 3c2bd6c..8028d9d 100644
--- a/playbooks/adm.yml
+++ b/playbooks/adm.yml
@@ -78,6 +78,18 @@
         owner: root
         group: "{{ ansible_wheel }}"
 
+    - name: Configure jumphosts
+      ansible.builtin.copy:
+        dest: /etc/ssh/ssh_config.d/jumphost.conf
+        content: |
+          Host *.iot.foo.sh !gw.iot.foo.sh
+            ProxyJump gw.iot.foo.sh
+          Host *.lan.foo.sh !gw.lan.foo.sh
+            ProxyJump gw.lan.foo.sh
+        mode: "0644"
+        owner: root
+        group: "{{ ansible_wheel }}"
+
     - name: Clone dns repo
       ansible.builtin.git:
         dest: /export/dns