Solved

Need help configuring a Sonic Wall TZ 170 for SSH

Posted on 2009-07-09
3
1,125 Views
Last Modified: 2013-11-16
I have little to no experience configuring sonic wall firewalls. I have done port forwarding on Linksys and Netgear routers. We have an Ubuntu system in our office that we would like to connect to remotely via SSH (Putty). Internally we can attach to the router via Putty from another workstation. I have already exported configuration file as a backup. I am looking for a ruff outline of steps needed to get SSH to work. Do I need to configure NAT?  Thanks
0
Comment
Question by:UserFriendlyHHI
3 Comments
 
LVL 14

Accepted Solution

by:
Roachy1979 earned 500 total points
ID: 24822536
Hi - this should be as simple as a NAT rule on the sonicwall to forward traffic to the Ubuntu box....

Theres a guide here....just substitute with port 22 TCP

http://portforward.com/english/routers/port_forwarding/Sonicwall/TZ-170/Echolink.htm

To add to this though....exercise extreme caution when opening SSH to the outside world - SSH can give control over a machine and therefore is heavily targeted for attack.  I'd strongly suggest that you think about using key based authentication or at the very least strong passwords.  If at all possible restrict where you permit ssh inbound from, and if this isn't possible, you may also want to consider running ssh on a different port and using fail2ban to automatically ban IP's that persistently fail to authenticate.

I'd read the following:  
http://thinkhole.org/wp/2006/10/30/five-steps-to-a-more-secure-ssh/ 
and
http://www.fail2ban.org/wiki/index.php/Main_Page

before you proceed :)
0

Featured Post

Master Your Team's Linux and Cloud Stack!

The average business loses $13.5M per year to ineffective training (per 1,000 employees). Keep ahead of the competition and combine in-person quality with online cost and flexibility by training with Linux Academy.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

Suggested Solutions

Title # Comments Views Activity
Cisco ASA policy-map not matching the specific traffic 3 58
Tagging ports on a managed switch 6 59
CentOS/RHEL 7 Linux maillog worldwide readable 2 68
Website Issue 10 78
This article will explain how to establish a SSH connection to Ubuntu through the firewall and using a different port other then 22. I have set up a Ubuntu virtual machine in Virtualbox and I am running a Windows 7 workstation. From the Ubuntu vi…
Note: for this to work properly you need to use a Cross-Over network cable. 1. Connect both servers S1 and S2 on the second network slots respectively. Note that you can use the 1st slots but usually these would be occupied by the Service Provide…
Although Jacob Bernoulli (1654-1705) has been credited as the creator of "Binomial Distribution Table", Gottfried Leibniz (1646-1716) did his dissertation on the subject in 1666; Leibniz you may recall is the co-inventor of "Calculus" and beat Isaac…
Finds all prime numbers in a range requested and places them in a public primes() array. I've demostrated a template size of 30 (2 * 3 * 5) but larger templates can be built such 210  (2 * 3 * 5 * 7) or 2310  (2 * 3 * 5 * 7 * 11). The larger templa…

832 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question