Welcome to the MacNN Forums.

If this is your first visit, be sure to check out the FAQ by clicking the link above. You may have to register before you can post: click the register link above to proceed. To start viewing messages, select the forum that you want to visit from the selection below.

You are here: MacNN Forums > Enthusiast Zone > Networking > Best practices: open ssh port facing the internet?

Best practices: open ssh port facing the internet?
Thread Tools
Join Date: May 2001
Location: Hilbert space
Status: Offline
Reply With Quote
Apr 13, 2017, 01:38 AM
I'm in the process of configuring a router/workstation running FreeBSD 11.0 that has a fixed IP. Ideally, I would like to run OpenVPN on it (still in the process of getting the config right) and be able to ssh into the machine. What are the best practices here? I reckon merely changing the port from 22 to some random four-digit number won't work. After I get the OpenVPN server up and running, I could just use that, but perhaps I would like to have a plan B, in case something goes awry when updating OpenVPN or so.
I don't suffer from insanity, I enjoy every minute of it.
Clinically Insane
Join Date: Jun 2001
Location: planning a comeback !
Status: Offline
Reply With Quote
Apr 22, 2017, 09:11 PM
I'm going to preface this with acknowledging that I'm a total n00b at this.
I used to have SSH port 22 open in the past on my iMac so that I could remotely dial in.

Back to your question: if you have VPN running, why would you even need an outward open port 22 for SSH ? Wouldn't you use VPN for access ("dialing in"), and then use SSH only on the internal network ?

Thread Tools
Forum Links
Forum Rules
You may not post new threads
You may not post replies
You may not post attachments
You may not edit your posts
BB code is On
Smilies are On
[IMG] code is On
HTML code is Off
Privacy Policy
All times are GMT -4. The time now is 08:52 AM.
All contents of these forums © 1995-2017 MacNN. All rights reserved.
Branding + Design: www.gesamtbild.com
vBulletin v.3.8.8 © 2000-2017, Jelsoft Enterprises Ltd.,