Using iptables to restrict access to ssh by IP

ssh linux iptables centos 
iptables -A INPUT -m state --state NEW,ESTABLISHED,RELATED --source x.x.x.x -p tcp --dport 22 -j ACCEPT

access only from x.x.x.x

iptables -A INPUT -m state --state NEW,ESTABLISHED,RELATED -p tcp --dport 22 -j DROP

drop all other packets to port 22


iptables -A INPUT -p tcp -s 12.34.56.78/16 --dport ssh -j ACCEPT
iptables -A INPUT -p tcp --dport ssh -j REJECT

There are other ways to do it, but this is simplest when we know nothing about your other rules.


Sometimes command line IpTables syntax can be a bit much to learn/digest. If you're new(ish) to linux administration; you might consider installing something like webmin. You can use their gui to create your rules, and then go back and check the "/etc/sysconfig/iptables" file and see the actual syntax.

I would then recommend using Webmin & IpTables to lock down webin access to only those specific IP addresses you wish. You use the same syntax as some of the other posters have answered, just changing the PORT to whatever you setup Webmin to use. (Hopefully something OTHER than the standard port:10000).

Related

How to roll back or uninstall Microsoft patch using WSUS?
Can I use a flag like -l from ls with find or locate?
How do I add xen kernel boot parameters in grub2?
MaxClients exceeds ServerLimit value...see the ServerLimit directive
what is the default rate unit in wget?
Can I rollback last update on SQL database? [duplicate]
Nginx logging "_" instead of domain name
Setup port knocking with iptables on single port?
How do I resolve a 503 Server Unavailable connection error on VMware ESXi?
Munin email notification
Is there a performance advantage to isolating database logs and data on different volumes (same RAID array) across a SAN?
find all directories having less than x files inside