CentOS6.5与CentOS7 ssh修改默认端口号的方法
<p>本文实例讲述了CentOS6.5与CentOS7 ssh修改默认端口号的方法。分享给大家供大家参考,具体如下:</p>
<p>
<span><strong>CentOS6.5ssh修改默认端口号</strong></span></p>
<p>
先查看下服务器端口号范围:</p>
<div class="jb51code">
<div>
<div class="syntaxhighlighterbash" id="highlighter_900491">
<div class="toolbar">
<span>?</span>
</div>
<table border="0" cellpadding="0" cellspacing="0"><tbody><tr>
<td class="gutter">
<div class="line number1 index0 alt2">
1</div>
<div class="line number2 index1 alt1">
2</div>
</td>
<td class="code">
<div class="container">
<div class="line number1 index0 alt2">
<code class="bash comments"># sysctl -a|grep ip_local_port_range</code>
</div>
<div class="line number2 index1 alt1">
<code class="bash plain">net.ipv4.ip_local_port_range = 32768 61000</code>
</div>
</div>
</td>
</tr></tbody></table>
</div>
</div>
<div class="codetool" id="codetool">
<div class="code_n">
<textarea></textarea>
</div>
</div>
</div>
<p>
新ssh端口号在这个范围内即可,如41134</p>
<p>
第一步:</p>
<div class="jb51code">
<div>
<div class="syntaxhighlighterbash" id="highlighter_46597">
<div class="toolbar">
<span>?</span>
</div>
<table border="0" cellpadding="0" cellspacing="0"><tbody><tr>
<td class="gutter">
<div class="line number1 index0 alt2">
1</div>
</td>
<td class="code">
<div class="container">
<div class="line number1 index0 alt2">
<code class="bash functions">vi</code> <code class="bash plain">/etc/sysconfig/iptables</code>
</div>
</div>
</td>
</tr></tbody></table>
</div>
</div>
<div class="codetool" id="codetool">
<div class="code_n">
<textarea></textarea>
</div>
</div>
</div>
<p>
找到现有的ssh那行,把22修改为新的SSH端口号41134</p>
<p>
修改后的配置应为</p>
<div class="jb51code">
<div>
<div class="syntaxhighlighterbash" id="highlighter_658035">
<div class="toolbar">
<span>?</span>
</div>
<table border="0" cellpadding="0" cellspacing="0"><tbody><tr>
<td class="gutter">
<div class="line number1 index0 alt2">
1</div>
<div class="line number2 index1 alt1">
2</div>
<div class="line number3 index2 alt2">
3</div>
</td>
<td class="code">
<div class="container">
<div class="line number1 index0 alt2">
<code class="bash plain">-A INPUT -p tcp -m state --state NEW -m tcp --dport 41134 -j ACCEPT</code>
</div>
<div class="line number2 index1 alt1">
<code class="bash comments">#service iptables save (保存防火墙配置)</code>
</div>
<div class="line number3 index2 alt2">
<code class="bash comments">#service iptables restart (重启防火墙)</code>
</div>
</div>
</td>
</tr></tbody></table>
</div>
</div>
<div class="codetool" id="codetool">
<div class="code_n">
<textarea></textarea>
</div>
</div>
</div>
<p>
第二步:</p>
<div class="jb51code">
<div>
<div class="syntaxhighlighterbash" id="highlighter_749534">
<div class="toolbar">
<span>?</span>
</div>
<table border="0" cellpadding="0" cellspacing="0"><tbody><tr>
<td class="gutter">
<div class="line number1 index0 alt2">
1</div>
</td>
<td class="code">
<div class="container">
<div class="line number1 index0 alt2">
<code class="bash comments"># vi /etc/ssh/sshd_config</code>
</div>
</div>
</td>
</tr></tbody></table>
</div>
</div>
<div class="codetool" id="codetool">
<div class="code_n">
<textarea></textarea>
</div>
</div>
</div>
<p>
把Port 22行的修改为Port 41134</p>
<p>
重启下ssh服务</p>
<div class="jb51code">
<div>
<div class="syntaxhighlighterbash" id="highlighter_996542">
<div class="toolbar">
<span>?</span>
</div>
<table border="0" cellpadding="0" cellspacing="0"><tbody><tr>
<td class="gutter">
<div class="line number1 index0 alt2">
1</div>
</td>
<td class="code">
<div class="container">
<div class="line number1 index0 alt2">
<code class="bash comments">#service sshd restart</code>
</div>
</div>
</td>
</tr></tbody></table>
</div>
</div>
<div class="codetool" id="codetool">
<div class="code_n">
<textarea></textarea>
</div>
</div>
</div>
<p>
切记,第一步和第二步不可搞反,否则SSH远程连接不上。</p>
<p>
<span><strong>Centos7 ssh修改默认端口号</strong></span></p>
<p>
修改ssh配置文件 <span>/etc/ssh/sshd_config</span>,将里面的 Port 22前面的注释去掉,将22修改为 4211</p>
<div class="jb51code">
<div>
<div class="syntaxhighlighterbash" id="highlighter_949504">
<div class="toolbar">
<span>?</span>
</div>
<table border="0" cellpadding="0" cellspacing="0"><tbody><tr>
<td class="gutter">
<div class="line number1 index0 alt2">
1</div>
<div class="line number2 index1 alt1">
2</div>
<div class="line number3 index2 alt2">
3</div>
<div class="line number4 index3 alt1">
4</div>
<div class="line number5 index4 alt2">
5</div>
</td>
<td class="code">
<div class="container">
<div class="line number1 index0 alt2">
<code class="bash functions">whereis</code> <code class="bash functions">ssh</code>
</div>
<div class="line number2 index1 alt1">
<code class="bash functions">ssh</code><code class="bash plain">: </code><code class="bash plain">/usr/bin/ssh</code> <code class="bash plain">/etc/ssh</code> <code class="bash plain">/usr/share/man/man1/ssh</code><code class="bash plain">.1.gz</code>
</div>
<div class="line number3 index2 alt2">
<code class="bash functions">cd</code> <code class="bash plain">/etc/ssh</code>
</div>
<div class="line number4 index3 alt1">
<code class="bash plain">ll</code>
</div>
<div class="line number5 index4 alt2">
<code class="bash plain">nano sshd_config</code>
</div>
</div>
</td>
</tr></tbody></table>
</div>
</div>
<div class="codetool" id="codetool">
<div class="code_n">
<textarea></textarea>
</div>
</div>
</div>
<p>
修改iptables 防火墙:<span>/etc/sysconfig/iptables</span></p>
<div class="jb51code">
<div>
<div class="syntaxhighlighterbash" id="highlighter_988268">
<div class="toolbar">
<span>?</span>
</div>
<table border="0" cellpadding="0" cellspacing="0"><tbody><tr>
<td class="gutter">
<div class="line number1 index0 alt2">
1</div>
<div class="line number2 index1 alt1">
2</div>
<div class="line number3 index2 alt2">
3</div>
</td>
<td class="code">
<div class="container">
<div class="line number1 index0 alt2">
<code class="bash plain">-A INPUT -p tcp -m state --state NEW -m tcp --dport 22 -j ACCEPT</code>
</div>
<div class="line number2 index1 alt1">
<code class="bash plain">-A INPUT -p tcp -m state --state NEW -m tcp --dport 22 -j ACCEPT</code>
</div>
<div class="line number3 index2 alt2">
<code class="bash plain">-A INPUT -p tcp -m state --state NEW -m tcp --dport 4211 -j ACCEPT</code>
</div>
</div>
</td>
</tr></tbody></table>
</div>
</div>
<div class="codetool" id="codetool">
<div class="code_n">
<textarea></textarea>
</div>
</div>
</div>
<p>
重启iptables</p>
<div class="jb51code">
<div>
<div class="syntaxhighlighterbash" id="highlighter_206213">
<div class="toolbar">
<span>?</span>
</div>
<table border="0" cellpadding="0" cellspacing="0"><tbody><tr>
<td class="gutter">
<div class="line number1 index0 alt2">
1</div>
<div class="line number2 index1 alt1">
2</div>
<div class="line number3 index2 alt2">
3</div>
</td>
<td class="code">
<div class="container">
<div class="line number1 index0 alt2">
<code class="bash plain">systemctl stop iptables</code>
</div>
<div class="line number2 index1 alt1">
<code class="bash plain">systemctl start iptables</code>
</div>
<div class="line number3 index2 alt2">
<code class="bash plain">systemctl status iptables</code>
</div>
</div>
</td>
</tr></tbody></table>
</div>
</div>
<div class="codetool" id="codetool">
<div class="code_n">
<textarea></textarea>
</div>
</div>
</div>
<p>
重启sshd</p>
<div class="jb51code">
<div>
<div class="syntaxhighlighterbash" id="highlighter_612785">
<div class="toolbar">
<span>?</span>
</div>
<table border="0" cellpadding="0" cellspacing="0"><tbody><tr>
<td class="gutter">
<div class="line number1 index0 alt2">
1</div>
</td>
<td class="code">
<div class="container">
<div class="line number1 index0 alt2">
<code class="bash plain">systemctl status sshd</code>
</div>
</div>
</td>
</tr></tbody></table>
</div>
</div>
<div class="codetool" id="codetool">
<div class="code_n">
<textarea></textarea>
</div>
</div>
</div>
<p>
希望本文所述对大家CentOS服务器维护有所帮助。</p>
<p>
原文链接:https://blog.csdn.net/hanzheng260561728/article/details/51125316</p>
頁:
[1]