Provide SSH to someone w/ dynamic IP address {Scanned}

Sat Sep 4 04:08:47 UTC 2004

Hi Mike,

> Comcast does, indeed, have a rather wide IP addresses, true, but your
> friend is only going to get an address in a small subnet

I wish that was the case...I've been manually updating my firewall whenever
his ip address changes and they are not even close let alone in the same ip
subnet:

64.12.116.x
68.49.152.x
68.49.155.x
68.49.156.x
68.49.157.x
152.163.252.x

I'm willing to open up my box to a subnet xxx.xxx.xxx.0 but so far the range
of ip addresses he is getting is so large, it will defeat the purpose to
blocking ssh because I would have to open up to so many ranges. Is there any
solution?

Thanks,

SW

----- Original Message ----- 
From: "Mike Burger" <mburger at bubbanfriends.org>
To: "SW" <wppiphoto at wppi.com>; "General Red Hat Linux discussion list"
<redhat-list at redhat.com>
Sent: Friday, September 03, 2004 11:56 PM
Subject: Re: Provide SSH to someone w/ dynamic IP address {Scanned}

On Fri, 3 Sep 2004, SW wrote:

> Hi,
>
> I have a RHE 3.0 behind a hardware firewall which currently blocks all ssh
> requests from the outside world. I need to provide one person access to
the
> box via ssh from the outside but they are using Comcast cable which
provide
> dynamic ip addresses. I tried to see about opening up port 22 on an ip
block
> but comcast uses all kind of ip addresses and not just from one ip block.
>
> Is there any way to acomplish this without opening my box to the rest of
the
> world?

Comcast does, indeed, have a rather wide IP addresses, true, but your
friend is only going to get an address in a small subnet.  For that
matter, their addres isn't going to change all that often.

That having been said, open up your system to the specific IP, or maybe a
255.255.255.0 worth of their range.

-- 
Mike Burger
http://www.bubbanfriends.org

Visit the Dog Pound II BBS
telnet://dogpound2.citadel.org or http://dogpound2.citadel.org

To be notified of updates to the web site, visit
http://www.bubbanfriends.org/mailman/listinfo/site-update, or send a
message to:

site-update-request at bubbanfriends.org

with a message of:

subscribe

-------------------------------------------------
        WPPi.com        |        WPPi.Net
-------------------------------------------------
  http://www.wppi.com   |  http://www.wppi.net
-------------------------------------------------
WPPi.com & WPPi.Net MailScanner Signature
This message has been scanned for viruses
and dangerous content by WPPi MailScanner,
and has been found to be clean.
-------------------------------------------------

-------------------------------------------------
        WPPi.com        |        WPPi.Net
-------------------------------------------------
  http://www.wppi.com   |  http://www.wppi.net
-------------------------------------------------
WPPi.com & WPPi.Net MailScanner Signature
This message has been scanned for viruses
and dangerous content by WPPi MailScanner,
and has been found to be clean.
-------------------------------------------------