Re: SSH/SSHD local LAN only

To: debian-user <debian-user@lists.debian.org>
Subject: Re: SSH/SSHD local LAN only
From: Lubos Vrbka <lists@vrbka.net>
Date: Fri, 19 Sep 2008 19:32:53 +0200
Message-id: <[🔎] 48D3E245.5060007@vrbka.net>
Reply-to: lists@vrbka.net
In-reply-to: <[🔎] c956da920809191014r59da19a3wfb429baba7951f70@mail.gmail.com>
References: <[🔎] slrngd7m6k.7lr.SDA@PPC.sweetpig.dyndns.org> <[🔎] c956da920809191014r59da19a3wfb429baba7951f70@mail.gmail.com>

You might also have a look at hosts.allow and hosts.deny
(http://linux.about.com/od/commands/l/blcmdl5_hostsal.htm is just the
first google result; the man pages certainly have more info, but I
don't use hosts.* myself so I can only really provide a pointer).  I'm
not sure that really adds anything that the firewall rule wouldn't
already, though.

well, if i understood the question correctly, this should do.

put to file /etc/hosts.allow:
ALL:ALL

put to file /etc/hosts.deny:

sshd: .your.domain.com allowed_ip_addresses allowed_networksallowed_hostnames

you can put more or less anything on the line and control who's allowedto connect (man hosts.deny). i'd say it is straightforward and worksimmediatelly without a need to (re)configure a firewall.


best,

--
Lubos _@_"
http://www.lubos.vrbka.net

Reply to:

Follow-Ups:
- Re: SSH/SSHD local LAN only
  - From: "nate" <debian-user@aphroland.org>
- Re: SSH/SSHD local LAN only
  - From: "Mumia W.." <paduille.4061.mumia.w+nospam@earthlink.net>

References:
- SSH/SSHD local LAN only
  - From: "S.D.Allen" <SDA@Deer-in-the-headlights.ca.invalid>
- Re: SSH/SSHD local LAN only
  - From: "Jeff Soules" <soules@gmail.com>

Prev by Date: Re: Miss Manners (Debian Edition): Release Critical Bugs
Next by Date: Re: SSH/SSHD local LAN only
Previous by thread: Re: SSH/SSHD local LAN only
Next by thread: Re: SSH/SSHD local LAN only
Index(es):
- Date
- Thread