[Discuss] S/W in Linux to change its default ports
R. McFarlane
techie at mcfarlanecomputing.net
Mon Jan 8 10:27:15 PST 2007
On 1/8/07 10:21 AM, Scott Petersen wrote:
<snip>
> All this being said, if you really want a single tool to change all
> ports on a system you could use iptables to mostly accomplish that.
> Iptables can do port forwarding (DNAT or Destination Network Address
> Translation). With that tool you could block external access on port 22
> and forward external connections to port 2890 to port 22. The SSH Daemon
> would still be listening on port 22. This is much more complex than just
> using each application's config and, in my opinion, is really the wrong
> way to accomplish things.
I disagree. I would leave all software running on it's default ports
and instead use the firewall to forward an outside obscure port to the
default inside port. This way, you don't have to reconfigure your client
programs to connect on the internal network, you only have to remember
the port number for when you are not at home.
That being said, if the ports are for public access (eg : running a
mail server or web server for far more people than just yourself), then
you will want to leave them as is.
<snip>
--
www.mcfarlanecomputing.net
More information about the Discuss
mailing list