https://community.hpe.com/t5/operating-system-hp-ux/ssh-query/m-p/4893569#M402822 Strange request, but like Laurent said ipfilter: <A href="http://www.software.hp.com/portal/swdepot/displayProductInfo.do?productNumber=B9901AA" target="_blank">http://www.software.hp.com/portal/swdepot/displayProductInfo.do?productNumber=B9901AA</A><BR /><BR />live free or die<BR />harry d brown jr Thu, 31 Mar 2005 07:29:30 GMT harry d brown jr 2005-03-31T07:29:30Z https://community.hpe.com/t5/operating-system-hp-ux/ssh-query/m-p/4893567#M402820 Can anyone tell me how to restrict network access to ssh. We are using hp-ux secure shell A.03.81.002. I want to give access to certain subnets only.<BR /><BR />Ssh is not listed in inetd.conf so I don't think an entry in inetd.sec will work. We are using hpux11i.<BR /><BR />thanks<BR />Jim Thu, 31 Mar 2005 05:16:14 GMT https://community.hpe.com/t5/operating-system-hp-ux/ssh-query/m-p/4893567#M402820 Jim Adamson 2005-03-31T05:16:14Z https://community.hpe.com/t5/operating-system-hp-ux/ssh-query/m-p/4893568#M402821 you can use ipfilter Thu, 31 Mar 2005 05:23:43 GMT https://community.hpe.com/t5/operating-system-hp-ux/ssh-query/m-p/4893568#M402821 Laurent Menase 2005-03-31T05:23:43Z https://community.hpe.com/t5/operating-system-hp-ux/ssh-query/m-p/4893569#M402822 Strange request, but like Laurent said ipfilter: <A href="http://www.software.hp.com/portal/swdepot/displayProductInfo.do?productNumber=B9901AA" target="_blank">http://www.software.hp.com/portal/swdepot/displayProductInfo.do?productNumber=B9901AA</A><BR /><BR />live free or die<BR />harry d brown jr Thu, 31 Mar 2005 07:29:30 GMT https://community.hpe.com/t5/operating-system-hp-ux/ssh-query/m-p/4893569#M402822 harry d brown jr 2005-03-31T07:29:30Z https://community.hpe.com/t5/operating-system-hp-ux/ssh-query/m-p/4893570#M402823 I don't remember if A.03.81.002 is compiled with Tcp_wrappers support (but i guess it is), if so, you can restrict acces to your sshd using /etc/hosts.allow &amp; /etc/hosts.deny files according to appropriate manuals.<BR /><BR />hth<BR />pszemek Thu, 31 Mar 2005 07:29:43 GMT https://community.hpe.com/t5/operating-system-hp-ux/ssh-query/m-p/4893570#M402823 Przemyslaw Staszkiewicz 2005-03-31T07:29:43Z https://community.hpe.com/t5/operating-system-hp-ux/ssh-query/m-p/4893571#M402824 You have two options.<BR /><BR />1. Put sshd in /etc/inetd.conf. (doesn't hurt) and then user /var/adm/inetd.sec to block the access. - EASY CHOICE<BR />2. HP SSH comes with built in tcp wrappers. Make use of /etc/hosts.deny file.<BR />sshd : 10.9.34.22, 10.34.23.xx<BR /><BR />If I were you, I would go with first choice. Thu, 31 Mar 2005 07:47:50 GMT https://community.hpe.com/t5/operating-system-hp-ux/ssh-query/m-p/4893571#M402824 RAC_1 2005-03-31T07:47:50Z https://community.hpe.com/t5/operating-system-hp-ux/ssh-query/m-p/4893572#M402825 Thanks, I'll try a tcp_wrapper then ipfilter.<BR /><BR />Jim Thu, 31 Mar 2005 07:48:09 GMT https://community.hpe.com/t5/operating-system-hp-ux/ssh-query/m-p/4893572#M402825 Jim Adamson 2005-03-31T07:48:09Z https://community.hpe.com/t5/operating-system-hp-ux/ssh-query/m-p/4893573#M402826 thanks Thu, 31 Mar 2005 07:49:12 GMT https://community.hpe.com/t5/operating-system-hp-ux/ssh-query/m-p/4893573#M402826 Jim Adamson 2005-03-31T07:49:12Z