Question

How to limit SSH-Access to IP

Posted September 9, 2015 10.1k views
SecurityNetworking

Hi there

I’m using Ubuntu 14x and due to security, I’d like to limit ssh connections to just my VPN (OpenVPN) address.

How to proceed? I found many ways, but AllowUsers root@ip didn’t do the job.

Thanks,
Sullivan

These answers are provided by our Community. If you find them useful, show some love by clicking the heart. If you run into issues leave a comment, or add your own answer to help others.

×
Submit an Answer
3 answers

Configure your Firewall, (iptables or ufw) to reject connections on your SSH Port unless from that specific IP Address.
Using something like the below:
iptables -I INPUT -p tcp ! -s <permittedIP> -j DROP

ref: http://unix.stackexchange.com/questions/145929/how-to-ensure-ssh-port-is-only-open-to-a-specific-ip-address

Thank you very much.

That means

iptables -I INPUT -p tcp ! -s 178.000.000.000 --dport 22 -j DROP

will protect my server on port 22 and ssh will only be allowed through this ip?

Best