Go Premium for a chance to win a PS4. Enter to Win

x
?
Solved

Need help configuring a Sonic Wall TZ 170 for SSH

Posted on 2009-07-09
3
Medium Priority
?
1,173 Views
Last Modified: 2013-11-16
I have little to no experience configuring sonic wall firewalls. I have done port forwarding on Linksys and Netgear routers. We have an Ubuntu system in our office that we would like to connect to remotely via SSH (Putty). Internally we can attach to the router via Putty from another workstation. I have already exported configuration file as a backup. I am looking for a ruff outline of steps needed to get SSH to work. Do I need to configure NAT?  Thanks
0
Comment
Question by:UserFriendlyHHI
3 Comments
 
LVL 14

Accepted Solution

by:
Roachy1979 earned 1500 total points
ID: 24822536
Hi - this should be as simple as a NAT rule on the sonicwall to forward traffic to the Ubuntu box....

Theres a guide here....just substitute with port 22 TCP

http://portforward.com/english/routers/port_forwarding/Sonicwall/TZ-170/Echolink.htm

To add to this though....exercise extreme caution when opening SSH to the outside world - SSH can give control over a machine and therefore is heavily targeted for attack.  I'd strongly suggest that you think about using key based authentication or at the very least strong passwords.  If at all possible restrict where you permit ssh inbound from, and if this isn't possible, you may also want to consider running ssh on a different port and using fail2ban to automatically ban IP's that persistently fail to authenticate.

I'd read the following:  
http://thinkhole.org/wp/2006/10/30/five-steps-to-a-more-secure-ssh/ 
and
http://www.fail2ban.org/wiki/index.php/Main_Page

before you proceed :)
0

Featured Post

When ransomware hits your clients, what do you do?

MSPs: Endpoint security isn’t enough to prevent ransomware.
As the impact and severity of crypto ransomware attacks has grown, Webroot fought back, not just by building a next-gen endpoint solution capable of preventing ransomware attacks but also by being a thought leader.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

​Being a Managed Services Provider (MSP) has presented you  with challenges in the past— and by meeting those challenges you’ve reaped the rewards of success.  In 2014, challenges and rewards remain; but as the Internet and business environment evol…
Fine Tune your automatic Updates for Ubuntu / Debian
If you're a developer or IT admin, you’re probably tasked with managing multiple websites, servers, applications, and levels of security on a daily basis. While this can be extremely time consuming, it can also be frustrating when systems aren't wor…
When cloud platforms entered the scene, users and companies jumped on board to take advantage of the many benefits, like the ability to work and connect with company information from various locations. What many didn't foresee was the increased risk…
Suggested Courses

926 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question