For those of you who didn’t know, SSH is program and protocol for securely connecting into remote machines across a network. It allows you to run programs, and do a variety of tasks as if you were sitting at the machine. SSH is very similar to telnet except for it is with encryption to protect the transferred information and authentication.
The Secure Shell (SSH) Protocol by default uses port 22. Accepting this value does not make your system insecure, nor will changing the port provide a significant variance in security. However, changing the default SSH port will stop many automated attacks and a bit harder to guess which port SSH is accessible from
This article assumes you have at least basic knowledge of linux, know how to use the shell, and most importantly, you host your site on your own VPS. The tutorial is quite simple. I will show you through the step by step change the default SSH port on CentOS.
Step 1. Log into your server as the root user.
1 | sshroot@hostname/IP |
Step 2. Open our SSH configuration.
1 | nano/etc/ssh/sshd_config |
Edit the line which states ‘Port 22’. Choose an appropriate port, also making sure it not currently used on the system.
1 2 | # What ports, IPs and protocols we listen for Port922 |
Once you have the change done, simply exit and save the sshd_conf file. Now all you need to run is the below command and it will restart the SSH server. The next time you want to connect via SSH, you will need to do so on your new port, in our case, 922:
1 | servicesshdrestart |
Verify SSH is listening on the new port by connecting to it. Note how the port number now needs to be declared:
1 | sshusername@hostname.com-p922 |
Step 3. Configure IPTables and Firewall.
After you are finished configuring SSH, you will need to add the port to iptables as well as your installed firewall:
1 | iptables-AINPUT-mstate--stateNEW-mtcp-ptcp--dport922-jACCEPT |
Congratulation’s! You have successfully change the default SSH port. Thanks for using this tutorial for change OpenSSH port number on CentOS 6 systems.
