What is the easiest way to allow remote SSH access to a private IP behind my dsl rter
Linux - SoftwareThis forum is for Software issues.
Having a problem installing a new program? Want to know which application is best for the job? Post your question in this forum.
Notices
Welcome to LinuxQuestions.org, a friendly and active Linux Community.
You are currently viewing LQ as a guest. By joining our community you will have the ability to post topics, receive our newsletter, use the advanced search, subscribe to threads and access many other special features. Registration is quick, simple and absolutely free. Join our community today!
Note that registered members see fewer ads, and ContentLink is completely disabled once you log in.
If you have any problems with the registration process or your account login, please contact us. If you need to reset your password, click here.
Having a problem logging in? Please visit this page to clear all LQ-related cookies.
Get a virtual cloud desktop with the Linux distro that you want in less than five minutes with Shells! With over 10 pre-installed distros to choose from, the worry-free installation life is here! Whether you are a digital nomad or just looking for flexibility, Shells can put your Linux machine on the device that you want to use.
Exclusive for LQ members, get up to 45% off per month. Click here for more info.
What you are looking for is dynamic dns. I've used this service in the past and it has worked quite well. The page is informative and gives step by step instructions for set up.
What you are looking for is dynamic dns. I've used this service in the past and it has worked quite well. The page is informative and gives step by step instructions for set up.
The easy way is to set up a DMZ to the target machine. The bad part is the entire machine is open to external attacks. You should run a firewall on the target box, if you set up a DMZ in the router.
The safer way would be to use port forwarding in the router to forward port 22 to the IP address of the target machine. This only opens one port to one IP address.
Either way you have to do it with the router configuration.
The easy way is to set up a DMZ to the target machine. The bad part is the entire machine is open to external attacks. You should run a firewall on the target box, if you set up a DMZ in the router.
The safer way would be to use port forwarding in the router to forward port 22 to the IP address of the target machine. This only opens one port to one IP address.
Either way you have to do it with the router configuration.
Thanks, that worked and I will do the firewall now.
Thanks an that will point to a private IP? Like 192.168.0.100?
Not directly..
That will provide a friendly name that will point to the Public IP of your Router.
You must configure your router to forward port 22 to the private IP of the machine you wish to SSH to..
Do NOT use the DMZ option in your router, as stated above that is insecure and exposes your PC to the Internet.. Only forward a single port from your router to the PC in question.
if you said what router you have I would bet someone could point you to directions for forwarding a port.
Not directly..
That will provide a friendly name that will point to the Public IP of your Router.
You must configure your router to forward port 22 to the private IP of the machine you wish to SSH to..
Do NOT use the DMZ option in your router, as stated above that is insecure and exposes your PC to the Internet.. Only forward a single port from your router to the PC in question.
if you said what router you have I would bet someone could point you to directions for forwarding a port.
if you are opening a port for ssh, and wanted to further secure it, you could look into fail2ban which can be used to automatically block connections from people that make multiple failed login attempts to your machine. prevent them from trying to brute force the password. Depends on how secure you want to be, or how paranoid you feel
LinuxQuestions.org is looking for people interested in writing
Editorials, Articles, Reviews, and more. If you'd like to contribute
content, let us know.