Re: Limiting ssh access: by MAC Address?

To: debian-user@lists.debian.org
Subject: Re: Limiting ssh access: by MAC Address?
From: Ángel <debian-user@debian.16bits.net>
Date: Wed, 04 Jan 2023 23:21:11 +0100
Message-id: <[🔎] 74d419a4186011f334c053c0ea4b80571ba72eaf.camel@debian.16bits.net>
In-reply-to: <[🔎] 20230104160335.630beb4c@jrenewsid.jretrading.com>
References: <[🔎] CAFMGiz9aMc+7u0pyx8nJvURJBABh2DJ4bhqNxqCDPph5An95GA@mail.gmail.com> <[🔎] 20230104160335.630beb4c@jrenewsid.jretrading.com>

On 2023-01-04 at 16:03 +0000, Joe wrote:
> I actually use ssh for remote access if I can, but it only allows TCP
> forwarding, so I can get to email but not to anything that requires
> DNS or UDP. A VPN connection gives full access to all network
> protocols.
> The VPN will have a pre-defined IP address in your private network, so
> access can be fine-tuned using a firewall if required. The VPN endpoint
> appears in the server as another network interface.

Actually, you can do the same with ssh. Have a look at -w and Tunnel
configuration option of ssh. It is a little known feature, but this
allows you to use ssh like a VPN. It does however require some
configuration at *both* sides of the ssh connection, specially if you
want to run it as non-root.

Regards

Reply to:

References:
- Limiting ssh access: by MAC Address?
  - From: Tom Browder <tom.browder@gmail.com>
- Re: Limiting ssh access: by MAC Address?
  - From: Joe <joe@jretrading.com>

Prev by Date: Re: Debian release criteria.
Next by Date: Re: Limiting ssh access: by MAC Address?
Previous by thread: Re: Limiting ssh access: by MAC Address?
Next by thread: VLC not ejecting CD/DVDs
Index(es):
- Date
- Thread