Am 18.04.2013 um 14:24 schrieb Paul Jochum: > Hi All: > > For astlinux 1.0.6 (running on a Soerkris 4801), what is the best > (i.e. most secure) way to setup an SSH connection from the internet to > a box on the internal IP (or a box on a DMZ interface, if that is > better)? > > thanks, > > Paul
If possible I would always use a VPN (e.g. OpenVPN). If this is not possible, you could use the firewall "dyndnshost-open" plugin to open the SSH port only for a specific (DNS)host, or create IP-dependent rules in the firewall. Additionally you should use the firewall "adaptive-ban" plugin, to block a possible attacker after X failed tries. Michael http://www.mksolutions.info
smime.p7s
Description: S/MIME cryptographic signature
------------------------------------------------------------------------------ Precog is a next-generation analytics platform capable of advanced analytics on semi-structured data. The platform includes APIs for building apps and a phenomenal toolset for data science. Developers can use our toolset for easy data analysis & visualization. Get a free account! http://www2.precog.com/precogplatform/slashdotnewsletter
_______________________________________________ Astlinux-users mailing list [email protected] https://lists.sourceforge.net/lists/listinfo/astlinux-users Donations to support AstLinux are graciously accepted via PayPal to [email protected].
