[B]how can i configure SSH to allow only the ip that i want?[/B]

eder_michael11 · 03-31-2006, 02:10 PM

sorry .. do you know .. how can i do it?

i have ip 10.41.0.146 in a lan and i want to accept
that 10.41.0.1 and 10.41.0.2 only connect to my computer by SSH and drop all others

do you know how to do it??

i use .. SLACKWARE 10.0

ralvez · 03-31-2006, 02:35 PM

You need to use a iptables to filter connections.
If you are new to Linux you may want to sue some thing simple to set up your firewall. One very good and simple firewall is Firestarter.
Take a look here: http://www.fs-security.com/

int0x80 · 03-31-2006, 03:50 PM

This is off the top of my head, so might need a fix.

Code:

allow="
10.41.0.1 
10.41.0.2
"

iptables -P INPUT DROP
iptables -P FORWARD DROP
iptables -P OUTPUT ACCEPT

iptables -A INPUT -i lo -j ACCEPT
iptables -A INPUT -i eth0 -m state --state ESTABLISHED,RELATED -j ACCEPT
for ip in $allow; do
 iptables -A INPUT -i eth0 -p tcp -s $ip --dport 22 -m state --state NEW -j ACCEPT;
done

michaelsanford · 03-31-2006, 09:03 PM

Or modify sshd to look for hosts.allow, but iptables is a good way to go (because it stops sshd from even hearding abot the connection if it's undesirable). Just offering an alternative

eder_michael11 · 04-01-2006, 01:21 AM

thanks to all ... but i was looking for modify sshd ... host.allow

how is the way to do it?

michaelsanford · 04-01-2006, 05:15 PM

Well, `man sshd_config' and `man hosts.allow' are good places to start. They also include warnings...

danex50 · 04-02-2006, 07:12 AM

Quote:

Originally Posted by eder_michael11

thanks to all ... but i was looking for modify sshd ... host.allow

how is the way to do it?

in hosts.allow there should be something like this:

Code:

sshd: 10.41.0.1 10.41.0.2

and in hosts.deny:

Code:

sshd: ALL

eder_michael11 · 04-03-2006, 10:41 AM

ok thnks i will try it

eder_michael11 · 04-04-2006, 11:51 AM

sorry but .. i did that and my computer continues accepting
conexions by ssh from the host that i dont want
i modify hosts.allow like this
sshd: 10.41.0.1 10.41.0.2

and hosts.deny
sshd: ALL

and doesnt work

do i have to modify some thing at sshd_config?

or what is happening?

DotHQ · 04-04-2006, 12:19 PM

for hosts.deny we use:
All:All

to deny traffic of All kinds. Maybe that'll help.

eder_michael11 · 04-05-2006, 10:43 AM

doesnt work at hosts.deny
ALL: ALL

i think that i have to do something more... it seems too easy just puting at

hosts.allow
sshd: 10.41.0.1

hosts.deny
ALL:ALL

i dont know maybe we are missing to modify other file or ... i dont know .. but doesnt work

i found a way editing sshd_config

AllowUsers root@10.41.0.1
DenyUsers ?*?

..............

it seems that works but i would like to do it from the files hosts.allow and deny ....

fotoguy · 04-05-2006, 06:49 PM

The /etc/hosts.deny and /etc/hosts.allow file should work, maybe tcpwrappers is not installed or not install properly.