Provide SSH to someone w/ dynamic IP address {Scanned}
SW
wppiphoto at wppi.com
Sat Sep 4 04:08:47 UTC 2004
Hi Mike,
> Comcast does, indeed, have a rather wide IP addresses, true, but your
> friend is only going to get an address in a small subnet
I wish that was the case...I've been manually updating my firewall whenever
his ip address changes and they are not even close let alone in the same ip
subnet:
64.12.116.x
68.49.152.x
68.49.155.x
68.49.156.x
68.49.157.x
152.163.252.x
I'm willing to open up my box to a subnet xxx.xxx.xxx.0 but so far the range
of ip addresses he is getting is so large, it will defeat the purpose to
blocking ssh because I would have to open up to so many ranges. Is there any
solution?
Thanks,
SW
----- Original Message -----
From: "Mike Burger" <mburger at bubbanfriends.org>
To: "SW" <wppiphoto at wppi.com>; "General Red Hat Linux discussion list"
<redhat-list at redhat.com>
Sent: Friday, September 03, 2004 11:56 PM
Subject: Re: Provide SSH to someone w/ dynamic IP address {Scanned}
On Fri, 3 Sep 2004, SW wrote:
> Hi,
>
> I have a RHE 3.0 behind a hardware firewall which currently blocks all ssh
> requests from the outside world. I need to provide one person access to
the
> box via ssh from the outside but they are using Comcast cable which
provide
> dynamic ip addresses. I tried to see about opening up port 22 on an ip
block
> but comcast uses all kind of ip addresses and not just from one ip block.
>
> Is there any way to acomplish this without opening my box to the rest of
the
> world?
Comcast does, indeed, have a rather wide IP addresses, true, but your
friend is only going to get an address in a small subnet. For that
matter, their addres isn't going to change all that often.
That having been said, open up your system to the specific IP, or maybe a
255.255.255.0 worth of their range.
--
Mike Burger
http://www.bubbanfriends.org
Visit the Dog Pound II BBS
telnet://dogpound2.citadel.org or http://dogpound2.citadel.org
To be notified of updates to the web site, visit
http://www.bubbanfriends.org/mailman/listinfo/site-update, or send a
message to:
site-update-request at bubbanfriends.org
with a message of:
subscribe
-------------------------------------------------
WPPi.com | WPPi.Net
-------------------------------------------------
http://www.wppi.com | http://www.wppi.net
-------------------------------------------------
WPPi.com & WPPi.Net MailScanner Signature
This message has been scanned for viruses
and dangerous content by WPPi MailScanner,
and has been found to be clean.
-------------------------------------------------
-------------------------------------------------
WPPi.com | WPPi.Net
-------------------------------------------------
http://www.wppi.com | http://www.wppi.net
-------------------------------------------------
WPPi.com & WPPi.Net MailScanner Signature
This message has been scanned for viruses
and dangerous content by WPPi MailScanner,
and has been found to be clean.
-------------------------------------------------
More information about the redhat-list
mailing list