public inbox for gentoo-user@lists.gentoo.org
 help / color / mirror / Atom feed
* [gentoo-user] Can iptables recognize SSH traffic?
@ 2006-10-23  1:07 Nico Schümann
  2006-10-23  1:21 ` Mauro Faccenda
  2006-10-23  6:53 ` Greg Bur
  0 siblings, 2 replies; 3+ messages in thread
From: Nico Schümann @ 2006-10-23  1:07 UTC (permalink / raw
  To: gentoo-user

Hello folks,

I have a web server running on port 80 and a SSH daemon running on
port 22. I don't want to change these ports because it just works this
way.
Can I configure iptables that it just accepts port 80 and if I try to
connect with a ssh client to port 80 to forward this ssh traffic to
port 22? I know how all this accept and forwards stuff works, but I
can't find out an option to recognize ssh traffic.

Tanks a lot,
Nico
-- 
gentoo-user@gentoo.org mailing list



^ permalink raw reply	[flat|nested] 3+ messages in thread
* Re: [gentoo-user] Can iptables recognize SSH traffic?
  2006-10-23  1:07 [gentoo-user] Can iptables recognize SSH traffic? Nico Schümann
@ 2006-10-23  1:21 ` Mauro Faccenda
  2006-10-23  6:53 ` Greg Bur
  1 sibling, 0 replies; 3+ messages in thread
From: Mauro Faccenda @ 2006-10-23  1:21 UTC (permalink / raw
  To: gentoo-user; +Cc: Nico Schümann

On Sunday 22 October 2006 22:07, Nico Schümann wrote:
> Hello folks,
>
> I have a web server running on port 80 and a SSH daemon running on
> port 22. I don't want to change these ports because it just works this
> way.
> Can I configure iptables that it just accepts port 80 and if I try to
> connect with a ssh client to port 80 to forward this ssh traffic to
> port 22? I know how all this accept and forwards stuff works, but I
> can't find out an option to recognize ssh traffic.

i don't think so. for doing it you'll need a application layer firewall...

you should try this: http://l7-filter.sourceforge.net/

[]'s
	.m

-- 
gentoo-user@gentoo.org mailing list



^ permalink raw reply	[flat|nested] 3+ messages in thread
* Re: [gentoo-user] Can iptables recognize SSH traffic?
  2006-10-23  1:07 [gentoo-user] Can iptables recognize SSH traffic? Nico Schümann
  2006-10-23  1:21 ` Mauro Faccenda
@ 2006-10-23  6:53 ` Greg Bur
  1 sibling, 0 replies; 3+ messages in thread
From: Greg Bur @ 2006-10-23  6:53 UTC (permalink / raw
  To: gentoo-user

On 10/22/06, Nico Schümann <nico.schuemann@googlemail.com> wrote:
> Hello folks,
>
> I have a web server running on port 80 and a SSH daemon running on
> port 22. I don't want to change these ports because it just works this
> way.
> Can I configure iptables that it just accepts port 80 and if I try to
> connect with a ssh client to port 80 to forward this ssh traffic to
> port 22? I know how all this accept and forwards stuff works, but I
> can't find out an option to recognize ssh traffic.

You might want to take a look at port knocking:

http://www.linuxjournal.com/article/6811

-- 
gentoo-user@gentoo.org mailing list



^ permalink raw reply	[flat|nested] 3+ messages in thread
end of thread, other threads:[~2006-10-23  6:58 UTC | newest]

Thread overview: 3+ messages (download: mbox.gz follow: Atom feed
-- links below jump to the message on this page --
2006-10-23  1:07 [gentoo-user] Can iptables recognize SSH traffic? Nico Schümann
2006-10-23  1:21 ` Mauro Faccenda
2006-10-23  6:53 ` Greg Bur

This is a public inbox, see mirroring instructions
for how to clone and mirror all data and code used for this inbox