Date: Fri, 18 Apr 2008 18:14:11 +0100 From: FreeBSD - Wire Consulting <freebsd@wire-consulting.com> To: Gilles <gilles.ganault@free.fr> Cc: freebsd-questions@freebsd.org Subject: Re: [SSHd] Limiting access from authorized IP's Message-ID: <4808D6E3.8030808@wire-consulting.com> In-Reply-To: <efih04dgdgqtkr6djs4photgsd1s299kq0@4ax.com> References: <2tng04doovnmtkr7or9kfkb596fgjfoj1c@4ax.com> <48086425.5080608@wire-consulting.com> <efih04dgdgqtkr6djs4photgsd1s299kq0@4ax.com>
next in thread | previous in thread | raw e-mail | index | archive | help
Hi, Gilles wrote: > I don't have a firewall on that host because there's already a NAT > router connecting the LAN to the Net. > I don't know your setup, but I'm pretty sure you can run the packet filter on your host anyway. You don't need to configure NAT to run your host firewall. > I'll just add the following to /etc/ssh/sshd_config, and restart the > service: > > AllowHosts 192.168.0 82.x.x.x > OK! > BTW, is the SSHd that comes with the system good enough, or should I > upgrade to what's in /usr/ports/security/ssh2? > For me base system ssh works like a sharm. IMO, you only want to "upgrade" if you need a specific feature that is not available on system SSH. Pedro
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?4808D6E3.8030808>