login about faq

According to the Admin guide adding the following syntax to <connections> in ssh-server-config.xml should block an IP:

<connection action="deny">
<selector>
<ip address="123.225.1.76" />
<ip address="12.25.1.6" />
</selector>
</connection>

I have added ip "123.225.1.76" and restarted ssh-server-g3 but I continue to see 123.225.1.76 trying to connect in my logs. Do I have the syntax correct?

asked Apr 14 '14 at 22:30

Matt's gravatar image

Matt
568913


I believe the order of "connection" elements is important. The first one that matches is selected (if it does not have selector it matches all). That means that this "deny" connection rule would have to be first in your configuration file.

The other issue could be if the machines also have IPv6 addresses and those were actually used.

link

answered Apr 14 '14 at 22:41

Martin%20Dobsik's gravatar image

Martin Dobsik ♦
599126

Thanks Martin! Making my "connection deny" block the first entry in my connections rule solved the issue.

(Apr 14 '14 at 22:58) Matt Matt's gravatar image
Your answer
toggle preview

Follow this question

By Email:

Once you sign in you will be able to subscribe for any updates here

By RSS:

Answers

Answers and Comments

Markdown Basics

  • *italic* or __italic__
  • **bold** or __bold__
  • link:[text](http://url.com/ "title")
  • image?![alt text](/path/img.jpg "title")
  • numbered list: 1. Foo 2. Bar
  • to add a line break simply add two spaces to where you would like the new line to be.
  • basic HTML tags are also supported

Tags:

×3

Asked: Apr 14 '14 at 22:30

Seen: 1,508 times

Last updated: Apr 14 '14 at 22:58

All user contributed content licensed under the cc-by-sa license.
Powered by OSQA.