In this post, i will show on how to allow and deny access for Remote SSH to CentOS server. This post will configure SSH access as follows:
– Only ehowstuff and root has remote SSH access to the machine within ehowstuff.local
– Clients within bloggerbaru.com should NOT have access to ssh on your system
Please note that all systems in that domain are in the 192.168.1.0/255.255.255.0 subnet, and all systems in that subnet are in bloggerbaru.com.
1. Modify ssh_config as below :
[root@centos62 ~]# vi /etc/ssh/sshd_config AllowUsers ehowstuff root
2. Make sshd auto start on boot and restart sshd service :
[root@centos62 ~]# chkconfig sshd on [root@centos62 ~]# /etc/init.d/sshd restart
3. Open iptables configuration as below :
[root@centos62 ~]# vi /etc/sysconfig/iptables
4. Append this line on your iptables setting :
-A INPUT -s 192.168.1.0/24 -p tcp --dport 22 -j REJECT
5. Restart the iptables :
[root@centos62 ~]# /etc/init.d/iptables restart