How to allow SSH only from local network via iptables [closed]

ssh linux iptables

Solution 1:

Here are the required rules:

# iptables -A INPUT -p tcp --dport 22 -s 192.168.0.0/16 -j ACCEPT
# iptables -A INPUT -p tcp --dport 22 -s 127.0.0.0/8 -j ACCEPT
# iptables -A INPUT -p tcp --dport 22 -j DROP

The first rule allows connection through port 22 (ssh) on protocol tcp to everyone from the 192.168.0.0/16 networks.

The second rule allows connecting to ssh locally.

The third rule drops all other IP's/network coming through port 22.

Related

Is there a way to make apt-get upgrade not show changelogs?
Diagnosing slow data processing on a VM
Nginx ip_hash does not load-balance connections to meteor backend
fail2ban regex not matching
Is ceph replication based on nodes or disks?
How to rescue a server with no free inodes (from DDOS)
Different ssh authentication policies for different accounts
How to use Azure Backup to backup files on on-premises Linux machine
best-practice for mid-sized shared storage
How to check apache for SNI (Server Name Indication ) availability?
Why is the iptables byte count for raw PREROUTING 0?
Can Veeam "Copy Job" handle alternating destinations?