ISPsystem.com Forums

ISPsystem.com Forums (http://forum.ispsystem.com//index.php)
-   How-To Guides (http://forum.ispsystem.com//forumdisplay.php?f=12)
-   -   Secure sshd (http://forum.ispsystem.com//showthread.php?t=2176)

icesoul 02-21-2014 03:59 AM

Secure sshd
 
how i secure ssh ? In firewall rules settings i waz add a rule to Deny for all IP, but do not know what to write in field ' Denied IP addresses '

fly 02-21-2014 07:21 AM

Hello,

Needs to set ip addresses which denied to field "Denied IP addresses". In field "Any
Source address" needs to set allowed network.

icesoul 02-22-2014 10:36 AM

how to deny all IP and alow just 1 ?
what to write on 'Denied IP addresses' field to deny all IP

fly 03-14-2014 11:33 AM

Quote:

how to deny all IP and alow just 1 ?
In this case ISPmanager's Firewall settings should be:
Action - Deny
Protocol - Any
IP address - 1 address that needs to be blocked.

icesoul 03-16-2014 07:55 AM

Quote:

Originally Posted by fly (Post 6790)
In this case ISPmanager's Firewall settings should be:
Action - Deny
Protocol - Any
IP address - 1 address that needs to be blocked.

but how to block all ? not just 1 IP

fly 03-17-2014 06:03 AM

Sorry, correct variant:

Action: Allow for
Protocol: Any
Source address (network): 0.0.0.0/0
Allowed IP addresses: allowed ip address

icesoul 04-09-2014 04:50 PM

1 Attachment(s)
i tink this firewall is not working
After this setting anyone can connect on ssh

fly 04-10-2014 05:35 AM

please show iptables -L

icesoul 04-10-2014 11:14 AM

Code:

Chain INPUT (policy ACCEPT)
target    prot opt source              destination

Chain FORWARD (policy ACCEPT)
target    prot opt source              destination

Chain OUTPUT (policy ACCEPT)
target    prot opt source              destination

Chain ispmgr_allow_ip (0 references)
target    prot opt source              destination

Chain ispmgr_allow_sub (0 references)
target    prot opt source              destination

Chain ispmgr_deny_ip (0 references)
target    prot opt source              destination

Chain ispmgr_deny_sub (0 references)
target    prot opt source              destination
DROP      tcp  --  anywhere            anywhere            tcp dpt:ssh


fly 04-11-2014 06:08 AM

Where is no references for ispmanager's chain. Probably, you executed iptables -F what is the reason of problem.

It needs to include ispmanager's chain to INPUT Chain for solving the problem


All times are GMT +2. The time now is 02:13 PM.

Powered by vBulletin® Version 3.8.9
Copyright ©2000 - 2024, vBulletin Solutions, Inc.