Running ssh on unreserved ports
Gabriel VLASIU
gabriel at vlasiu.net
Fri Feb 18 21:32:59 UTC 2011
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1
On Fri, 18 Feb 2011, Alex wrote:
> I'd like to run an ssh server as root on a port greater than 1024
> instead of the normal 22 but selinux doesn't seem to like that. How
> can I get around that?
>
> I'd like to move it to a higher port to avoid the normal doorknob
> rattling that occurs with ssh running on a public server.
You can do this from iptables:
1. block port 22 in iptables
2. Add the following rule:
iptables -t nat -A PREROUTING -p tcp -m tcp --dport 2345 -m state --state NEW -j REDIRECT --to-ports 22
Gabriel
- --
// Gabriel VLASIU
//
// OpenGPG-KeyID : 0xE684206E
// OpenGPG-Fingerprint: 0C3D 9F8B 725D E243 CB3C 8428 796A DB1F E684 206E
// OpenGPG-URL : http://www.vlasiu.net/public.key
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.5 (GNU/Linux)
iD8DBQFNXuWSeWrbH+aEIG4RAvtHAJ9YksR5Uv0gNqIuoelm5qs5bfmkpACfdgHm
tNGlmF/cHuI03wK51VqOpVs=
=mzGA
-----END PGP SIGNATURE-----
More information about the users
mailing list