On 08/09/16 16:56, sdm wrote:
In that wiki, "If there are *fixed locations* from where you would want to log in to your SSHD, you can set up an per-host access control."
It doesn't sound like you need to be playing with per-host access control that at all, as what you need to do is port forward an SSH port to the SSHD box in the router. The SSHD port can remain at port 22, but in your router you can set a higher port, something like 70022 which hooks up to the destination port 22. The nice thing about doing it that way is that you can keep the program defaults for whatever the default port number is set at without changing a config file, yet set a specific high port number in the router which can be changed on the fly at any time (I know DD-WRT supports this and many consumer routers, but maybe not all).
Once those packets are passing through the router and going to the correct destination port, it should work without any hangups. It is not recommended to actually open port 22 in your router and have SSHD 22 running on port 22 as you will start to get port scanned all the time, with hackers trying to crack the box in order to exploit it.
See my reply to jdd. Unfortunately this is a lightweight router provided by the ISP. The model is a Thomson 2704n (apparently it is also known as a Sagemcom 2704N). It was a few weeks ago I had a first look at its configuration options, which aren't very extensive. I don't know if it's even possible to change the router's default SSHD port. It only provides the possibility to select a service such as SSH that I want to allow, then select the (only?) device on the network to which that service is forwarded, along with the port number, which I assumed to mean only the port number on the destination device. I have already configured a non-default port number on the sender and receiver devices. This has just prompted me to search online for a manual for this router, and I see there are some guides on the ISP user forums. Will have to do some further reading (there's rather a lot). -- To unsubscribe, e-mail: opensuse+unsubscribe@opensuse.org To contact the owner, e-mail: opensuse+owner@opensuse.org