1.设置selinux端口
[[email protected] ~]# semanage port -l|grep ssh -bash: semanage: 未找到命令 [[email protected] ~]# whereis semanage semanage:
缺少semanage,需要安装net-tools (这个包同时还包含了ifconfig,否则只能用ip addr看了~)
[[email protected] ~]# yum install net-tools [[email protected] ~]# semanage port -l|grep ssh -bash: semanage: 未找到命令
安装后还是提示未找到,还需要安装policycoreutils-python
[[email protected] ~]# yum -y install policycoreutils-python
[[email protected] ~]# semanage port -l|grep ssh ssh_port_t tcp 22 [[email protected] ~]# semanage port -a -t ssh_port_t -p tcp 12345 [[email protected] ~]# semanage port -l|grep ssh ssh_port_t tcp 12345, 22
2.设置firewalld里的端口
[[email protected] ~]# systemctl status firewalld firewalld.service - firewalld - dynamic firewall daemon Loaded: loaded (/usr/lib/systemd/system/firewalld.service; enabled) Active: active (running) since 六 2015-10-17 15:51:47 CST; 3h 5min ago Main PID: 807 (firewalld) CGroup: /system.slice/firewalld.service └─807 /usr/bin/python -Es /usr/sbin/firewalld --nofork --nopid 10月 17 15:51:46 hn.kd.ny.adsl systemd[1]: Starting firewalld - dynamic firewall daemon... 10月 17 15:51:47 hn.kd.ny.adsl systemd[1]: Started firewalld - dynamic firewall daemon. [[email protected] ~]# firewall-cmd --zone=public --add-port=12345/tcp --permanent success [[email protected] ~]# firewall-cmd --query-port=12345/tcp no [[email protected] ~]# systemctl reload firewalld [[email protected] ~]# firewall-cmd --query-port=12345/tcp FirewallD is not running [[email protected] ~]# firewall-cmd --query-port=12345/tcp FirewallD is not running [[email protected] ~]# systemctl start firewalld [[email protected] ~]# firewall-cmd --query-port=12345/tcp yes
3.修改sshd_config中的Port
[[email protected] ~]# vi /etc/ssh/sshd_config Port 12345
[[email protected] ~]# systemctl restart sshd.service
4.测试
时间: 2024-08-24 12:57:51