[Date Prev][Date Next] [Thread Prev][Thread Next] [Thread Index] [Date Index] [Author Index]

Re: How can I block IP address range with sshd_config

From: Mike Klinke <lsomike futzin com>
To: For users of Fedora Core releases <fedora-list redhat com>
Subject: Re: How can I block IP address range with sshd_config
Date: Tue, 27 Jul 2004 11:37:38 -0500

On Tuesday 27 July 2004 11:12, Michael Sullivan wrote:

> I looked through the man page for sshd_config for a way to block
> their IP, but I couldn't find it.  Does anyone here know how to do
> this?

Another option in addition to all the other good advice you've been 
sent is to use sshd via xinetd and you can restrict access to 
specific IP addresses/ranges, times of day, connection frequeceny and  
the other options listed in "man xinetd.conf".  A typical 
configuration to limit access to the 192.168.1.0 network would look 
something like:

service ssh
{
        disable = no
        socket_type = stream
        type = UNLISTED
        port = 22
        protocol = tcp
        wait = no
        user = root
        server = /usr/sbin/sshd
        server_args = -i -u0
        only_from = 192.168.1.0 
}

Regards,  Mike Klinke

References:
- How can I block IP address range with sshd_config
  - From: Michael Sullivan

[Date Prev][Date Next] [Thread Prev][Thread Next] [Thread Index] [Date Index] [Author Index]