Utshintsha njani i-SSH port kwi-Fedora 23 kunye nendlela yokusebenzisa i-firewall yakho

el_robertucho

Imizuzu ye2

Kwi-Fedora 23 kunokwenzeka ukutshintsha i-SSH port engagqibekanga (22) iye kwenye oyikhethileyo engaphezulu kwe-1024, kwaye ngokuchaseneyo emva koko unokubeka enye izibuko kunxibelelwano lwangaphandle.

I-fedora-23

Xa uza kutshintsha izibuko le-SSH eFedora 23 kufuneka sigcine imigaqo emithathu

  • Ukucwangciswa kwe-sshd daemon eya kuthi yabelwe izibuko.
  • Useto lwe-firewall ukuze lubambe kwelo zibuko litsha.
  • Kwaye uqwalasele i-selinux (ukuba iyasebenza) ukumisela umgaqo-nkqubo wokusetyenziswa kwelo zibuko.

Kulungile ke, masibone ukuba itshintshwa njani izibuko kuqwalaselo lweSSH

Sivula i-terminal kunye / njl / ssh / sshd_config kwaye senze oku kulandelayo

Asizimiselanga kwizibuko kwaye sabela elinye inani, sinokubeka iiPorts ezininzi

sshd ukumamela kumazibuko amaninzi>

Izibuko

Ukudalwa kwamazibuko aliqela kunokuba luncedo kuvavanyo, sishiya izibuko lama-22 kunye nale siyenzileyo, ukuze siqiniseke ukuba izibuko elitsha liyasebenza kwaye ukuba izibuko elitsha alisebenzi okanye alilungiselelwanga kwaphela ngokuchanekileyo izibuko 22.

Ngoku ukongeza utshintsho kwi-selinux

Ukudibana kwezibuko -a -t ssh_port_t -p tcp

Ngoku sihamba nodonga lomlilo

firewall1

Kwi-Fedora 23 i-firewall ilawulwa ngayo i-firewall-cmd.

Ukuba sifuna ukubona imimandla esebenzayo:

firewall-cmd-uluhlu-lonke

Emva koko iya kubuyisa into enje:

I-FedoraServer (emiselweyo, esebenzayo) yokuhlangana: imithombo: iinkonzo: amazibuko: iiprotokholi: umasquerade: phambili-amazibuko: icmp-iibhloko: imithetho etyebileyo

Kodwa ukuba into esiyifunayo kukusixelela ukuba yeyiphi indawo emiselweyo, siya kubhala oku:

firewall-cmd -get-default-zone FedoraServer

Emva koku sinokongeza izibuko elitsha kwi-firewall

Ukongeza izibuko lohlobo tcp kwindawo yomlilo siza kubhala lo mgca wokuyalela:

firewall-cmd -isigxina-indawo = Yongeza izibuko = / tcp

Kuya kufuneka sazi ukuba xa sifuna ukwenza uvavanyo lwexeshana, siza kuyishiya -Ngokusisigxina, kodwa ukuba yeyokwexeshana, akufuneki ulubone utshintsho xa usiya kwimithetho ye-firewall.

linux_network

Makhe sijonge ukuba ngaba izibuko livulekile ngokwendalo kwi-firewall ngalo myalelo:

firewall-cmd-umbuzo-port = / tcp

Ukuba siyenze kakuhle kwaye ukuba ivulekile, iya kuyibonisa ngo "ewe"

Oluqwalaselo olunye lunokusetyenziswa kuninzi lweeseva ze-Apache zeseva ze-http.


Shiya uluvo lwakho

Idilesi yakho ye email aziyi kupapashwa. ezidingekayo ziphawulwe *

*

*

  1. Uxanduva lwedatha: UMiguel Ángel Gatón
  2. Injongo yedatha: Ulawulo lwe-SPAM, ulawulo lwezimvo.
  3. Umthetho: Imvume yakho
  4. Unxibelelwano lwedatha: Idatha ayizukuhanjiswa kubantu besithathu ngaphandle koxanduva lomthetho.
  5. Ukugcinwa kweenkcukacha
  6. Amalungelo: Ngalo naliphi na ixesha unganciphisa, uphinde uphinde ucime ulwazi lwakho.

  1.   وبسرويس پيامک sitsho
    yenzayo 8 iminyaka

    Iposti enkulu enkosi ngesabelo

    Phendula kwi-وبسرويس پيامک
  2.   تور دبی sitsho
    yenzayo 8 iminyaka

    Enkosi ngenqaku lakho elilungileyo

    Phendula تور دبی
  3.   وقت سفارت sitsho
    yenzayo 7 iminyaka

    tanx kakhulu

    Phendula u-وقت سفارت
  4.   جرثقیل سقفی sitsho
    yenzayo 6 iminyaka

    enkosi ngokwabelana ngeposi…

    Phendula kwi جرثقیل سقفی