How to access abc@192.168.0.1 from 192.168.0.5 only
Hi,
Due to some security reason, I am looking access by particular user from the single mahcine only. there should not block all user also from this machine and other mchine also. Actually, I have one machine, its ip is 192.168.0.1 and user abc. I am looking abc@192.168.0.1 can be access by 192.168.0.5 only. can't be access from different machine by this abc@192.168.0.1 Other user's should not effect and 192.168.0.1 should be access by any machine. my intentation to make the rule for abc@192.168.0.1 only. there should not be other. SO, please friends help me. |
6 times i read this , still not clear enought for me
1) is this mean you have a machine ip 192.168.0.1 this machine only have one user is abc or 2) this machine have many user , abc is one of them and you want to block abc only if no (1) you can use tcp-wrapper to block ip 192.168.0.1 from login to 192.168.0.5 if no (2) you can define the service abc@192.168.0.1 in the 192.168.0.5 please clear it up |
Quote:
iptables -I INPUT -p tcp ! -s 192.168.0.5 --dport 22 -j DROP This rule will allow ssh traffic from 192.168.0.5 ip. |
There is an owner module that you can use on the 192.168.0.1 machine, with the ABC user. You can use it in the output and forward chains.
http://www.cyberciti.biz/tips/block-...-iptables.html If you want to control access to the 192.168.0.5 machine, per user, authentication is normally used rather than IP Tables. For example "AllowUsers ABC" in sshd_config will only allow user ABC to log in. |
Using IP addresses (or mac addresses) is a poor way to secure a connection. Consider using some other form of authentication.
|
Thank you so much guys for your reply.
Hi Reuter, Let me tell you actually seniaro, I am installing platespin in our envoirnment. and I want to create plspin account on making replication for on the server. plspin has the equivalent right as root(sudo no password). so, I want to access this server(1992.168.0.1) by plspin account from 192.168.0.5 only. |
Quote:
ok come this way 1)plspin@server05 want to ssh to plspin@server01 <- do you want to allow/block this ? answer= allow or block 2)userA@server05 want to ssh to userA@server01 <- do you want to allow/block this ? answer= allow or block hope this way can make little bit clear your satuation, btw what is that plspin i googling arround i got nothing |
All times are GMT -5. The time now is 04:11 PM. |