Go Back   ISPsystem.com Forums > ISPmanager > How-To Guides

Notices

Reply
 
Thread Tools
Old 02-21-2014, 03:59 AM   #1
Member
 
Join Date: Feb 2014
Posts: 33
icesoul is on a distinguished road
Default Secure sshd

how i secure ssh ? In firewall rules settings i waz add a rule to Deny for all IP, but do not know what to write in field ' Denied IP addresses '
icesoul is offline   Reply With Quote
Old 02-21-2014, 07:21 AM   #2
ISPsystem team
 
Join Date: Jun 2013
Posts: 233
fly is on a distinguished road
Default

Hello,

Needs to set ip addresses which denied to field "Denied IP addresses". In field "Any
Source address" needs to set allowed network.
fly is offline   Reply With Quote
Old 02-22-2014, 10:36 AM   #3
Member
 
Join Date: Feb 2014
Posts: 33
icesoul is on a distinguished road
Default

how to deny all IP and alow just 1 ?
what to write on 'Denied IP addresses' field to deny all IP
icesoul is offline   Reply With Quote
Old 03-14-2014, 11:33 AM   #4
ISPsystem team
 
Join Date: Jun 2013
Posts: 233
fly is on a distinguished road
Default

Quote:
how to deny all IP and alow just 1 ?
In this case ISPmanager's Firewall settings should be:
Action - Deny
Protocol - Any
IP address - 1 address that needs to be blocked.
fly is offline   Reply With Quote
Old 03-16-2014, 07:55 AM   #5
Member
 
Join Date: Feb 2014
Posts: 33
icesoul is on a distinguished road
Default

Quote:
Originally Posted by fly View Post
In this case ISPmanager's Firewall settings should be:
Action - Deny
Protocol - Any
IP address - 1 address that needs to be blocked.
but how to block all ? not just 1 IP
icesoul is offline   Reply With Quote
Old 03-17-2014, 06:03 AM   #6
ISPsystem team
 
Join Date: Jun 2013
Posts: 233
fly is on a distinguished road
Default

Sorry, correct variant:

Action: Allow for
Protocol: Any
Source address (network): 0.0.0.0/0
Allowed IP addresses: allowed ip address
fly is offline   Reply With Quote
Old 04-09-2014, 04:50 PM   #7
Member
 
Join Date: Feb 2014
Posts: 33
icesoul is on a distinguished road
Default

i tink this firewall is not working
After this setting anyone can connect on ssh
Attached Images
File Type: jpg firewall.JPG (30.5 KB, 6 views)
icesoul is offline   Reply With Quote
Old 04-10-2014, 05:35 AM   #8
ISPsystem team
 
Join Date: Jun 2013
Posts: 233
fly is on a distinguished road
Default

please show iptables -L
fly is offline   Reply With Quote
Old 04-10-2014, 11:14 AM   #9
Member
 
Join Date: Feb 2014
Posts: 33
icesoul is on a distinguished road
Default

Code:
Chain INPUT (policy ACCEPT)
target     prot opt source               destination

Chain FORWARD (policy ACCEPT)
target     prot opt source               destination

Chain OUTPUT (policy ACCEPT)
target     prot opt source               destination

Chain ispmgr_allow_ip (0 references)
target     prot opt source               destination

Chain ispmgr_allow_sub (0 references)
target     prot opt source               destination

Chain ispmgr_deny_ip (0 references)
target     prot opt source               destination

Chain ispmgr_deny_sub (0 references)
target     prot opt source               destination
DROP       tcp  --  anywhere             anywhere             tcp dpt:ssh
icesoul is offline   Reply With Quote
Old 04-11-2014, 06:08 AM   #10
ISPsystem team
 
Join Date: Jun 2013
Posts: 233
fly is on a distinguished road
Default

Where is no references for ispmanager's chain. Probably, you executed iptables -F what is the reason of problem.

It needs to include ispmanager's chain to INPUT Chain for solving the problem
fly is offline   Reply With Quote
Reply

Thread Tools

Posting Rules
You may not post new threads
You may not post replies
You may not post attachments
You may not edit your posts

BB code is On
Smilies are On
[IMG] code is On
HTML code is Off

Forum Jump


All times are GMT +2. The time now is 10:17 PM.