1.设置selinux端口
[[email protected] ~]# semanage port -l|grep ssh -bash: semanage: 未找到命令 [[email protected] ~]# whereis semanage semanage:
缺少semanage,需要安装net-tools (这个包同时还包含了ifconfig,否则只能用ip addr看了~)
[[email protected] ~]# yum install net-tools [[email protected] ~]# semanage port -l|grep ssh -bash: semanage: 未找到命令
安装后还是提示未找到,还需要安装policycoreutils-python
[[email protected] ~]# yum -y install policycoreutils-python
[[email protected] ~]# semanage port -l|grep ssh ssh_port_t tcp 22 [[email protected] ~]# semanage port -a -t ssh_port_t -p tcp 12345 [[email protected] ~]# semanage port -l|grep ssh ssh_port_t tcp 12345, 22
2.设置firewalld里的端口
[[email protected] ~]# systemctl status firewalld
firewalld.service - firewalld - dynamic firewall daemon
Loaded: loaded (/usr/lib/systemd/system/firewalld.service; enabled)
Active: active (running) since 六 2015-10-17 15:51:47 CST; 3h 5min ago
Main PID: 807 (firewalld)
CGroup: /system.slice/firewalld.service
└─807 /usr/bin/python -Es /usr/sbin/firewalld --nofork --nopid
10月 17 15:51:46 hn.kd.ny.adsl systemd[1]: Starting firewalld - dynamic firewall daemon...
10月 17 15:51:47 hn.kd.ny.adsl systemd[1]: Started firewalld - dynamic firewall daemon.
[[email protected] ~]# firewall-cmd --zone=public --add-port=12345/tcp --permanent
success
[[email protected] ~]# firewall-cmd --query-port=12345/tcp
no
[[email protected] ~]# systemctl reload firewalld
[[email protected] ~]# firewall-cmd --query-port=12345/tcp
FirewallD is not running
[[email protected] ~]# firewall-cmd --query-port=12345/tcp
FirewallD is not running
[[email protected] ~]# systemctl start firewalld
[[email protected] ~]# firewall-cmd --query-port=12345/tcp
yes
3.修改sshd_config中的Port
[[email protected] ~]# vi /etc/ssh/sshd_config Port 12345
[[email protected] ~]# systemctl restart sshd.service
4.测试
时间: 2024-08-24 12:57:51