Date: Fri, 23 Jul 2004 14:52:55 +0200 From: Nelis Lamprecht <nelis@8ball.co.za> To: Graham Bentley <gbentley@uk2.net> Cc: freebsd-questions@freebsd.org Subject: Re: Best way to limit SSH to LAN IP's only ? Message-ID: <1090587161.14691.10.camel@nelis.brabys.co.za> In-Reply-To: <3.0.6.32.20040723132012.007d8e50@mail.uk2.net> References: <3.0.6.32.20040723132012.007d8e50@mail.uk2.net>
next in thread | previous in thread | raw e-mail | index | archive | help
--=-btt7LvhQM1x4lWu40Al1 Content-Type: text/plain Content-Transfer-Encoding: quoted-printable On Fri, 2004-07-23 at 14:20, Graham Bentley wrote: > Hi All, >=20 > Wondered what is the best way to do this ? >=20 > Do I have to get involved with host.allow / deny > or better to use the sshd config ? >=20 If this system has 2 interfaces, one LAN and one Internet then all you need to do is configure sshd to listen on the LAN interface. in sshd_config: ListenAddress your.lan.interface.ip Regards, --=20 Nelis Lamprecht PGP: http://www.8ball.co.za/pgpkey/nelis.asc "Unix IS user friendly.. It's just selective about who its friends are." --=-btt7LvhQM1x4lWu40Al1 Content-Type: application/pgp-signature; name=signature.asc Content-Description: This is a digitally signed message part -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.2.4 (GNU/Linux) iD8DBQBBAQoZQfIMKiRMCrERAo1FAKCywwmGIoc7O5pyUUDEnAXSXJfLqACgwl2d EzguadL4hqwB/C6LfUVLR1o= =evok -----END PGP SIGNATURE----- --=-btt7LvhQM1x4lWu40Al1--
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?1090587161.14691.10.camel>