February 28, 201115 yr I would be nice to have ipchains support built in to unraid. Right now I would like to restrict whom can connect via SSH by ip address. Using a router is certainly an option but add a layer of confusion, and another layer of potential failure. Thanks, Neil
February 28, 201115 yr We have to be careful that we dont infer that unRAID is safe to be put internet facing. I dont disagree that a firewall i a good idea but we should be careful not to cloud the fact that unRAID is not designed to be secure.
February 28, 201115 yr Author I dont disagree but in my case i use rsync between an internet facing machine hosted somewhere and my unraid server at home. Rsync uses ssh so I have to open ssh for the two machines to communicate. This is an issue as I have tons of invalid login attempts. I would like to restrict this. Also in some other environments it makes sense not to let just anyone connect via ssh / telnet. Right now there is no built in way to restricte the ip addresss of who can do that. Neil
February 28, 201115 yr Yeah but remember SSH isnt supported either for the very same reason. Again I dont disagree but we have to be careful we don't imply something. I still think its a good idea in general though and would support its inclusion. As a point of untested note, i believe SSH honors hosts.allow and hosts.deny as and easy route to solve your problem at hand.
February 28, 201115 yr Author I thought I tried it and it didn't work? I will retest today. Thanks! Neil
Archived
This topic is now archived and is closed to further replies.