SSH Config

clinton_edwards · July 6, 2008, 7:47am

hello, I’m trying to get ssh up and running for the first time. I believe I have the sshd running. Not sure if it’s configured properly. I have a router that is issuing me an ip address and i just may be entering the wrong info in the ssh client I’m using. So i suppose i need to know how to find out my address to enter into the ssh client

Magic31 · July 6, 2008, 10:42am

Hi & welcome to the forum!

To walk you through the basic steps;

By default ssh will be blocked by the openSUSE firewall (unless you specified to open it during the setup).

You can check this in YaST > Firewall > (TAB) Allowed Services
There should be an entry ‘Secure Shell Server’. If not select the drop down box ’ service to allow’ and add it to the list.

2d, is the service running? Open a terminal console , ’ su - ’ for root rights (entering root password) and enter ’ service sshd status '. It should say it’s running.
If not you can set it to run at boot with ’ chkconfig sshd on ’ and start it with ’ service sshd start ’ (all must be done as root).

It’s best to check and see if you can ssh to the system from a pc inside the network. Just to be sure it’s working correctly.

Last step is to set up a port forward on your router to forward port 22 to the ip address of you system.

Hope that helps,
Wj

vinukaimal · July 6, 2008, 12:20pm

Hi,

It sounds like you don’t know the ip address of your linux box. type “/sbin/ifconfig” on the console and it will show your IP address. that is the address you will have to type on your ssh client.Plus follow all the steps mentioned by WJ

HTH,

Vinu

clinton_edwards · July 6, 2008, 10:52pm

thanks for the info. I completed all the steps except the last one. When i forward port 20 is it a tcp port or udp. im guessing its tcp.

clinton_edwards · July 7, 2008, 1:08am

I meant port 22 in the previous post. However, I got the SSHD service up and running and configured correctly checked by a successful login, thanks for all the info and help.

Magic31 · July 7, 2008, 6:52am

You are welcome… Glad you have it going!
-Wj

clinton_edwards · July 9, 2008, 3:32am

I have another question, I tried connecting to my computer from outside the network, and was unsuccessful. Im guessing its because im using the wrong ip address. Am i supposed to use my router’s ip address? Is that why i put the port forward in my router? Any help would be great. thanks =]

df6269 · July 9, 2008, 3:41am

You shall enable vpn function of opensuse and put the 1723 port forwarding in your router.

clinton_edwards · July 9, 2008, 6:35am

Could you tell me what packages i would need to install to get vpn up and running please? Also, what type of security threats are there with vpn and what can I do to improve security?

df6269 · July 9, 2008, 7:50am

Another way is more easlier that is vnc if you try to remote control opensuse from outside.

Select YsST–> Network Services → Remote Administration (VNC)
Select Allow Remote Administration
Click Finish
Forward 5901~5903 ports

Magic31 · July 9, 2008, 8:35am

In the outside world you need to connect to your routers outside ip.
One way to get that address is by pointing your browser at home to What Is My IP Address? - IP Address Lookup, Bandwidth Speed Test, IP Info, plus more

The port forward that you’ve set in the router should then forward any incoming request on port 22 (SSH) to the given home pc.

ps. You don’t specifically need to setup a vpn or vnc connection. SSH is already secure and you can also forward your pc’s X output to the remote pc you are working on. If the remote pc is a Linux system with X running it’s as easy as starting the ssh session with the -X switch. I also add the -C switch to enable compression (to optimize bandwidth use) e.g. ’ ssh -XC <username>@<ip address pc or router> ’
When you start an application like YaST (entering ‘yast2 &’ on the ssh console command line), YaST will run on the pc you are managing but the screen output is send to the remote pc.

Have a look here (talks about windows, but it’s the same principle) : Xming & Putty - Manage Linux On Windows - openSUSE Forums

Cheers,
Wj

oldcpu · July 9, 2008, 8:54am

Further to df6269’s recommendation, in case you did not know of the link, here is a general guide for port forwarding:
PortForward.com - Free Help Setting up Your Router or Firewall
… there are many different routers covered there.

clinton_edwards · July 9, 2008, 11:32am

Thank you all for your input. It’s nice to know different ways of doing things and gives me options for how I want to set ssh up. This helps a great deal and as soon as I test the outside connection again I will let ya’ll know how it goes. Thank again

clinton_edwards · July 10, 2008, 12:15am

Also in the sshd configuration settings on the general tab under server features, there are 3 options: 1. allow tcp forwarding, 2. allow x11 forwarding and 3. allow compression. Could someone give me a brief explanation of these. -Thanks.

user · July 10, 2008, 12:18am

-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1

http://en.wikipedia.org/wiki/Secure_Shell

Good luck.

clinton edwards wrote:
| Also in the sshd configuration settings on the general tab under server
| features, there are 3 options: 1. allow tcp forwarding, 2. allow x11
| forwarding and 3. allow compression. Could someone give me a brief
| explanation of these. -Thanks.
|
|
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.2 (GNU/Linux)
Comment: Using GnuPG with Mozilla - http://enigmail.mozdev.org

iD8DBQFIdTk83s42bA80+9kRArkHAJ9/RHXWcvG9WxBtg7ElwvBZj2jSPgCfQ89N
SFoD1RCjBB3F/U9j9fBjPyQ=
=ZLZ7
-----END PGP SIGNATURE-----