I've been trying to ssh into my firewall (Dachstein) from the internet at large (instead of from the internal network like I generally do).
Experimenting, I added a line to hosts.allow, and used ipchains to put in a rule to accept the packets that came from my IP address, destined for the relevant port etc, and found I was able to log in by ssh without any problems. The problem I have is when I'll be doing this for real, I'll be using my internet connection at home where I have a dynamic IP address (changes about once a day). I'm wary of opening up the firewall to a big range of IP addresses (or whatever) so I tried setting up a hostname with a dynamic DNS system (dynDNS) and using the hostname instead of IP's. I think I have half a grasp of why that didn't work (I'd basically given my IP address an extra hostname, so forward and reverse name lookups didn't necessarily match - or something like that), and get the feeling that was the wrong approach to take for this problem. Can anyone give any pointers? What's the best way to grant yourself access by ssh if you have a dynamic IP? Do I need to relax a bit and put something pretty broad in hosts.allow, or is there a way to make a dynamic DNS system work the way I want? Thanks Julian Church -- [EMAIL PROTECTED] www.ljchurch.co.uk ------------------------------------------------------------------------ leaf-user mailing list: [EMAIL PROTECTED] https://lists.sourceforge.net/lists/listinfo/leaf-user SR FAQ: http://leaf-project.org/pub/doc/docmanager/docid_1891.html
