On Sat, 27 Nov 1999, Gerald Henriksen wrote:
> How does one change hosts.allow to allow an ssh connection? I can't
> find an entry in inet.conf for ssh, so I am guessing that I have to
> add an entry there, but what?
in hosts.allow put the line:
sshd: ip1 ip2 ip3
where ip1-3 are the ips u w
On Fri, 26 Nov 1999 17:15:29 -0800, you wrote:
> Sshd can be built to use the access routines from tcpd; the versions
>from ftp.replay.com
>(now ftp.zedz.com) are built this way. This causes sshd to use
>/etc/hosts.allow and
>/etc/hosts.deny to decide if a connection should be allowed (see
This should do it:
SSH_PORTS="513:1023"
IPADDR="yourip"
PRIVPORTS="0:1023"
UNPRIVPORTS="1024:65535"
EXTERNAL_INTERFACE="eth0"
ANYWHERE="any/0"
ipchains -A input -i $EXTERNAL_INTERFACE -p tcp \
-s $ANYWHERE $UNPRIVPORTS \
-d $IPADDR 22 -j ACCEPT
ipchains -A outpu
> Anyone know how to set up the rules to allow ssh through my firewall with
> ipchains? I seem to have everything else working, but can't figure out
> what I'm doing wrong with the accept rule for ssh. According to
> /etc/services, ssh is running on 22 for both tcp and udp. So, I added the
> fo
Here are the rules I use for ssh on my box. I'm able to ssh into my
server and ssh out to other servers. The rules under SSH server can
be skipped if you only want to ssh out to another server.
The variables are mostly obviously named with the exception of
$SSH_PORTS. That is defined as 513:10
Evening again:
Almost there :)
Anyone know how to set up the rules to allow ssh through my firewall with
ipchains? I seem to have everything else working, but can't figure out
what I'm doing wrong with the accept rule for ssh. According to
/etc/services, ssh is running on 22 for both tcp and u
