linux_wiki:network_services_overview_ssh

Differences

This shows you the differences between two versions of the page.

Link to this comparison view

Both sides previous revision Previous revision
Next revision 		Previous revision
linux_wiki:network_services_overview_ssh [2018/05/20 14:58]
billdozor [Host Based] 		linux_wiki:network_services_overview_ssh [2019/05/25 23:50] (current)
Line 122: Line 122:
  
 ===== Host Based ===== ===== Host Based =====
 +
 +There are two methods to control access based on host:
 +  * Firewall rich rule
 +  * TCP Wrappers (hosts.allow, hosts.deny)
 +
 +\\
 +==== Host Based: Firewall ====
 +
 +Create a rich rule<code bash>firewall-cmd --add-rich-rule='rule family="ipv4" service name="ssh" source address="192.168.1.152" log prefix="SSHD HOST DENIED: " reject'
 +firewall-cmd --reload
 +</code>
 +  * Rejects ssh traffic from the source address 192.168.1.152 and logs the rejection.
 +
 +\\
 +==== Host Based: TCP Wrappers ====
  
 The first match of the following actions is taken The first match of the following actions is taken
  • linux_wiki/network_services_overview_ssh.1526842688.txt.gz
  • Last modified: 2019/05/25 23:50
  • (external edit)