LinuxQuestions.org
Visit Jeremy's Blog.
Home Forums Tutorials Articles Register
Go Back   LinuxQuestions.org > Forums > Linux Forums > Linux - Security
Reload this Page Firewalld - enable IP range
User Name
Password
Linux - Security This forum is for all security related questions.
Questions, tips, system compromises, firewalls, etc. are all included here.

Notices


Reply
  Search this Thread
Old 06-05-2016, 04:02 PM   #1
vmxes
LQ Newbie
 
Registered: Jun 2016
Posts: 5

Rep: Reputation: Disabled
Firewalld - enable IP range

Hello,

I have a small development server with CentOS 7.2. The server should serve only some developers but all of them have dynamic IP's.
At the moment the firewalld setup is:
Code:
firewall-cmd --list-all
public (default, active)
  interfaces: enp1s0
  sources:
  services: dhcpv6-client samba ssh
  ports: 80/tcp 88/tcp 8888/tcp 8080/tcp 3306/tcp 8005/tcp
  masquerade: no
  forward-ports:
  icmp-blocks:
  rich rules:
        rule family="ipv4" source address="91.229.20.63" reject
However in the last 2 weeks there were ~1 million invalid SSH login attempts to the server. I have added some reject rules, but every day there were new IP sources.

What is the best way to configure firewalld with the ports above but only accept developer logins where developers have dynamic IPs?

Thanks in advance!
 
Old 06-06-2016, 03:04 AM   #2
JJJCR
Senior Member
 
Registered: Apr 2010
Posts: 2,162

Rep: Reputation: 449Reputation: 449Reputation: 449Reputation: 449Reputation: 449
Check the sticky thread about SSH security.
http://www.linuxquestions.org/questi...tempts-340366/

Check out this link also:
https://www.digitalocean.com/communi...an-on-centos-7

Or use certificates instead of password:
https://www.digitalocean.com/communi...ts-with-ubuntu
 
1 members found this post helpful.
  


Reply



Posting Rules
You may not post new threads
You may not post replies
You may not post attachments
You may not edit your posts
BB code is On
Smilies are On
[IMG] code is Off
HTML code is Off


Similar Threads
Thread Thread Starter Forum Replies Last Post
firewalld confusion packetsmacker Linux - Security 1 01-28-2016 01:11 PM
RHEL7 firewalld. dpu Red Hat 5 06-23-2014 09:12 AM
firewalld sunveer Fedora 1 02-03-2013 03:41 PM
Gnuplot - Combining a linear range and log-scale range in the same X-axis llauro Linux - Software 2 04-26-2011 12:55 PM
[SOLVED] What are short range link and long range links in routing? mq15 Linux - Networking 6 06-26-2009 11:16 PM

LinuxQuestions.org > Forums > Linux Forums > Linux - Security

All times are GMT -5. The time now is 03:16 AM.

Contact Us - Advertising Info - Rules - Privacy - LQ Merchandise - Donations - Contributing Member - LQ Sitemap -
Main Menu
Advertisement
My LQ
Write for LQ
LinuxQuestions.org is looking for people interested in writing Editorials, Articles, Reviews, and more. If you'd like to contribute content, let us know.
Main Menu
Syndicate
RSS1  Latest Threads
RSS1  LQ News
Twitter: @linuxquestions
Open Source Consulting | Domain Registration