Date: Wed, 25 Aug 2004 22:03:20 +0200 From: Volker Kindermann <ml@ps102.de> To: "Hugo Silva" <klr@6s-gaming.com> Cc: questions@freebsd.org Subject: Re: ssh question Message-ID: <20040825220320.287f6694@ariel.office.volker.de> In-Reply-To: <51438.81.84.174.8.1093450304.squirrel@81.84.174.8> References: <CMEJKMIGPBGBFGMAGDKCCECCCBAA.Mtullos@501Post.com> <51438.81.84.174.8.1093450304.squirrel@81.84.174.8>
next in thread | previous in thread | raw e-mail | index | archive | help
> > After modifying the sshd.conf to allow my new IP access via ssh I > > can't connect. I have stopped and restarted the service and the > > server and double > > 'Allow your new ip address' ? > > What you can specify on /etc/ssh/sshd_config is the ip the server > binds to, not the ip addresses of the clients connecting. (your words > suggest you did this) - reconfigure your sshd_config to the old value > (your ip address, or 0.0.0.0) and re-start sshd. > > To limit access to the sshd, use a firewall, like ipfw , pf , or > ipfilter. > in addition you can actually limit access to the sshd with the keywords AllowUsers and AllowGroups with the corresponding user/group _names_ (not uid/gid!!!). But there's no option to do this ip-based (this is possible with packetfilters or tcp-wrapper). Do a "netstat -na|grep LISTEN|grep 22" to prove on which IP your ssh-Server is listening. -volker
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?20040825220320.287f6694>