Re: SSH & iptables

To: debian-user@lists.debian.org
Subject: Re: SSH & iptables
From: Eric Gerlach <egerlach@feds.uwaterloo.ca>
Date: Tue, 26 May 2009 12:57:46 -0400
Message-id: <[🔎] 20090526165745.GI10774@wks0082.feds.uwaterloo.ca>
In-reply-to: <[🔎] 4A19B824.4030303@wp.pl>
References: <[🔎] 4A19B824.4030303@wp.pl>

I would recommend using firehol for something like this.  The following
/etc/firehol/firehol.conf would do the trick:

interface any world
	server ssh accept
	client all accept

In fact, I think that's close to the default conf file.  You should read the
docs, though, you don't want to screw it up and not be able to connect.

Cheers,

Eric

On Sun, May 24, 2009 at 11:12:04PM +0200, Pawel Cholewinski wrote:
> Hello
> I want to filter traffic on SSH server. I want to ACCEPT only SSH trafic  
> on SSH server computer. Packet SSH which receive and send should be  
> ACCEPT. Other traffic should be DROP. Which protocol I must use. I know  
> that port nr 22 is used default.
> So, what I must type to do this?
>
> Thanks
> pch0317
>
>
> -- 
> To UNSUBSCRIBE, email to debian-user-REQUEST@lists.debian.org with a 
> subject of "unsubscribe". Trouble? Contact listmaster@lists.debian.org
>

-- 
Eric Gerlach, Network Administrator
Federation of Students
University of Waterloo
p: (519) 888-4567 x36329
e: egerlach@feds.uwaterloo.ca

Reply to:

References:
- SSH & iptables
  - From: Pawel Cholewinski <pawelcholewinski@wp.pl>

Prev by Date: Re: Howto install the patch for Intel NIC
Next by Date: Re: KDE is now broken (Fwd: Heads-up: KDE4 hitting testing tonight (UTC) )
Previous by thread: Re: SSH & iptables
Next by thread: squeeze upgrade process killed exim4 over here
Index(es):
- Date
- Thread