[j-nsp] Changing SSH port on EX switches, M routers

Scott T. Cameron routehero at gmail.com
Sat Apr 2 11:49:05 EDT 2011


You should probably think about doing IP-based filtering on your management
networks.  It's going to guarantee a drop in random port scans/login
attempts vs obfuscating the listen port of ssh.

Scott

On Sat, Apr 2, 2011 at 11:13 AM, Jesus Alvarez <jalvarez at prw.net> wrote:

> > No, I've been asking for this feature. :)
>
> Thanks for your answer.
>
> It should be trivial to implement a configurable SSH port in the Junos
> firmware and this would help in securing the router. Practically all
> scanners attempt SSH logins when port 22 is available but very few check all
> available ports. It is surprising that Juniper does not provide a way to
> change the SSH port.
>
>
> _______________________________________________
> juniper-nsp mailing list juniper-nsp at puck.nether.net
> https://puck.nether.net/mailman/listinfo/juniper-nsp
>


More information about the juniper-nsp mailing list