diff --git a/config/ssh.nix b/config/ssh.nix
new file mode 100644
index 0000000..8851eec
--- /dev/null
+++ b/config/ssh.nix
@@ -0,0 +1,64 @@
+{
+  programs.ssh = {
+    enable = true;
+
+    forwardAgent = false;
+    compression = false;
+    hashKnownHosts = true;
+    serverAliveInterval = 60;
+    extraConfig = ''
+      IgnoreUnknown UseKeychain,AddKeysToAgent
+      UseKeychain yes
+      AddKeysToAgent yes
+      UpdateHostKeys ask
+      VerifyHostKeyDNS yes
+    '';
+
+    matchBlocks = {
+      # Work
+
+      "git.app.nedeco.de" = {
+        port = 22;
+        user = "git";
+        identitiesOnly = true;
+        identityFile = "~/.ssh/nedeco_gitlab";
+        compression = true;
+      };
+
+      "nedeco-smartos-hosting" = {
+        host = "10.0.90.*";
+        port = 22;
+        user = "root";
+        identitiesOnly = true;
+        identityFile = "~/.ssh/nedeco";
+      };
+
+      # Private
+
+      "github.com" = {
+        port = 22;
+        user = "git";
+        identitiesOnly = true;
+        identityFile = "~/.ssh/GitHub";
+        compression = true;
+      };
+
+      "gitlab.com" = {
+        port = 22;
+        user = "git";
+        identitiesOnly = true;
+        identityFile = "~/.ssh/GitLab";
+        compression = true;
+      };
+
+      "nas" = {
+        host = "10.0.0.100";
+        port = 22;
+        user = "daniel";
+        identitiesOnly = true;
+        identityFile = "~/.ssh/freenas";
+        compression = true;
+      };
+    };
+  };
+}
diff --git a/home.nix b/home.nix
index 1092f9e..40890f9 100644
--- a/home.nix
+++ b/home.nix
@@ -18,6 +18,8 @@
 
     ./programs/scripts.nix
 
+    ./config/ssh.nix
+
     ./config/yt-dlp.nix
   ];