ML
    • Recent
    • Categories
    • Tags
    • Popular
    • Users
    • Groups
    • Register
    • Login

    Setting Up My First Jump Server

    IT Discussion
    linux jump server ssh
    3
    18
    4.7k
    Loading More Posts
    • Oldest to Newest
    • Newest to Oldest
    • Most Votes
    Reply
    • Reply as topic
    Log in to reply
    This topic has been deleted. Only users with topic management privileges can see it.
    • S
      scottalanmiller
      last edited by

      Fail2Ban is important and you will often want to have IPTables lock access to just your IP address or range for extra security. Although if you have a dynamic IP that can be problematic.

      T 1 Reply Last reply Reply Quote 0
      • T
        thanksajdotcom @scottalanmiller
        last edited by

        @scottalanmiller said:

        Fail2Ban is important and you will often want to have IPTables lock access to just your IP address or range for extra security. Although if you have a dynamic IP that can be problematic.

        Right, but Fail2Ban will only lock after X number of failed login attempts, right?

        S 1 Reply Last reply Reply Quote 0
        • S
          scottalanmiller
          last edited by

          Some people use different OSes for their jump servers too to make them have different vulnerabilities than the systems that they support. That way if there is a weakness in the OS that you are jumping to (Ubuntu, probably, for you) the jump server is not exposed to the same risk requiring someone to hack into two different systems to get through your barriers. Commonly you would see FreeBSD, NetBSD, Solaris or OpenBSD used in those cases. Dragonfly would work great too.

          1 Reply Last reply Reply Quote 0
          • S
            scottalanmiller @thanksajdotcom
            last edited by

            @thanksaj said:

            Right, but Fail2Ban will only lock after X number of failed login attempts, right?

            Correct.

            T 1 Reply Last reply Reply Quote 0
            • T
              thanksajdotcom @scottalanmiller
              last edited by

              @scottalanmiller said:

              @thanksaj said:

              Right, but Fail2Ban will only lock after X number of failed login attempts, right?

              Correct.

              Ok, cool.

              1 Reply Last reply Reply Quote 0
              • T
                thanksajdotcom
                last edited by

                What do I do to configure Fail2Ban? I've never set it up before. Any good walkthroughs?

                S 1 Reply Last reply Reply Quote 0
                • S
                  scottalanmiller @thanksajdotcom
                  last edited by

                  @thanksaj said:

                  What do I do to configure Fail2Ban? I've never set it up before. Any good walkthroughs?

                  It sets itself up on install on most systems.

                  T 1 Reply Last reply Reply Quote 0
                  • T
                    thanksajdotcom @scottalanmiller
                    last edited by

                    @scottalanmiller said:

                    @thanksaj said:

                    What do I do to configure Fail2Ban? I've never set it up before. Any good walkthroughs?

                    It sets itself up on install on most systems.

                    So nothing I really need to configure on it?

                    1 Reply Last reply Reply Quote 0
                    • S
                      scottalanmiller
                      last edited by

                      Nope. Out of the box it handles SSH.

                      T 1 Reply Last reply Reply Quote 0
                      • T
                        thanksajdotcom @scottalanmiller
                        last edited by

                        @scottalanmiller said:

                        Nope. Out of the box it handles SSH.

                        Sweet!

                        1 Reply Last reply Reply Quote 0
                        • R
                          Reid Cooper
                          last edited by

                          What OS are you using?

                          T 1 Reply Last reply Reply Quote 0
                          • T
                            thanksajdotcom @Reid Cooper
                            last edited by

                            @Reid-Cooper said:

                            What OS are you using?

                            I already had the Ubuntu 14.04 ISO on my ESXi server, so I used that. Keeps it all consistent. I was tempted to use CentOS though...

                            1 Reply Last reply Reply Quote 0
                            • S
                              scottalanmiller
                              last edited by

                              Why do you use an old version of Ubuntu? We are already halfway through the lifespan of 14.04's replacement, 14.10. 15.04 is just three months away.

                              T 1 Reply Last reply Reply Quote 0
                              • T
                                thanksajdotcom @scottalanmiller
                                last edited by

                                @scottalanmiller said:

                                Why do you use an old version of Ubuntu? We are already halfway through the lifespan of 14.04's replacement, 14.10. 15.04 is just three months away.

                                I'm on 14.04 LTS. That's the recommended use version from Ubuntu. Check their site.

                                1 Reply Last reply Reply Quote 0
                                • T
                                  thanksajdotcom
                                  last edited by

                                  http://www.ubuntu.com/download/server

                                  See??

                                  1 Reply Last reply Reply Quote 0
                                  • T
                                    thanksajdotcom
                                    last edited by

                                    Also, when I update to 14.10, $4!+ goes haywire...

                                    1 Reply Last reply Reply Quote 0
                                    • 1 / 1
                                    • First post
                                      Last post