SSH: secure access with iptables
Tweet Prevent ssh dictionary attacks on Several worms attacking vulnerabilities in SSH servers using dictionaries. This should not be a problem if we have a good password policy, otherwise, there are other ways to secure our SSH service. The most obvious way to prevent access to the host, allowing connections from a small group of IP addresses using a firewall. If you currently are running a firewall you can add the following: Accept incoming SSH connections from trusted addresses. Discard all other connections. Firewall using iptables commands as follows: All connections from the address 192.168.1.200 to port 22 (SSH) deathbian: ~ # iptables-A INPUT-p tcp-m state - state NEW - source 192.168.1.200 - dport 22-j ACCEPT Deny SSH connections to other deathbian: ~ # iptables-A INPUT-p tcp ... Read full article »
Filed
How to set up a simple gateway with Debian Linux
Tweet When a company has a broadband connection to the Internet and aims to share the connection between different offices, often thought to be necessary to purchase a dedicated firewall computer, which is a mistake. In this paper we show that with minimal investment and using Debian Linux to our network we can offer better services than when purchasing a computer firewall. The acquisition of this hardware may be too costly for many companies in Guatemala, however when using a dedicated machine with a Debian Linux installed and serving as a gateway for the LAN, it offers many benefits when compared against a team of dedicated firewall. To begin with, is much more flexible and also allows us to offer many extra services to our network. To run ... Read full article »
Filed under: Articles , Debian , DHCP , Howto , Internet , Iptables , LAN , NIC
Latest Comments