From owner-freebsd-questions Tue Aug 10 14:12: 0 1999 Delivered-To: freebsd-questions@freebsd.org Received: from doc.dcoder.com (doc.dcoder.com [168.143.224.52]) by hub.freebsd.org (Postfix) with ESMTP id 8211114CBA for ; Tue, 10 Aug 1999 14:11:50 -0700 (PDT) (envelope-from dacoder@dcoder.com) Received: from doc.dcoder.com (doc.dcoder.com [168.143.224.52]) by doc.dcoder.com (8.9.3/8.9.3) with ESMTP id RAA61468; Tue, 10 Aug 1999 17:12:27 -0400 (EDT) (envelope-from dacoder@dcoder.com) Date: Tue, 10 Aug 1999 17:12:27 -0400 (EDT) From: David Coder Reply-To: David Coder To: Doug White Cc: Dan Larsson , "[FreeBSD-Questions-List] (E-post)" Subject: Re: only allow ssh from predetermined ips In-Reply-To: Message-ID: MIME-Version: 1.0 Content-Type: TEXT/PLAIN; charset=US-ASCII Sender: owner-freebsd-questions@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.ORG On Tue, 10 Aug 1999, Doug White wrote: > On Tue, 10 Aug 1999, Dan Larsson wrote: > > > I've set up a group of 5 servers which are physically located at the other > > end of town. Up until now I've driven all the way over there to administer > > them. But what I want to do now is to stay put and login over the internet > > using ssh. But I only want to allow ssh to connect from specific ips or > > something similar. Someone got any ideas how to set this up on fbsd3.2? > > ssh is alreadly linked with libwrap, so simply set /etc/hosts.allow > appropriately. > I've not heard of that one. But editing /etc/sshd_config, listing on the AllowHosts line, separated by spaces, the IP's from which connections are to be allowed, then doing a sighup on the parent sshd process will certainly work. dc _____________________ David Coder SysAdmin WebHosting Verio.com 703-749-7955 x1314 To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-questions" in the body of the message