Skip to content

Instantly share code, notes, and snippets.

@QuiteZeal

QuiteZeal/Change SSH port on CentOS 8.md

Last active December 18, 2023 20:40
Show Gist options
  • Star 2 You must be signed in to star a gist
  • Fork 0 You must be signed in to fork a gist
  • Save QuiteZeal/08fbf1aa4f987e0cfba5e8ecdc40f53e to your computer and use it in GitHub Desktop.
Save QuiteZeal/08fbf1aa4f987e0cfba5e8ecdc40f53e to your computer and use it in GitHub Desktop.
Download ZIP
Change SSH port on CentOS 8
Raw
Change SSH port on CentOS 8.md

Change SSH port on CentOS 8

The key step is to turn your want listen-port and close the default ssh-port. For CentOS 8, will use firewalld

Open your want listen-port and close the default

sudo firewall-cmd --zone=public --permanent --add-port=30000/tcp
sudo firewall-cmd --zone=public --permanent --remove-service=ssh

If firewalld not installed, you can manually install and enable it.

sudo yum -y install firewalld
sudo systemctl enable --now firewalld

And then, reload it:

sudo firewall-cmd --reload

Allow new port on SELinux

It will use semange:

sudo semanage port -a -t ssh_port_t -p tcp 3000

which is to set new port, and then:

semanage port -l | grep ssh

it will be answered: ssh_port_t tcp 3000

Verify and restart

Use netstat to confirm:

$ netstat -tunl | grep 3000
tcp        0      0 0.0.0.0:3000           0.0.0.0:*               LISTEN     
tcp6       0      0 :::3000                :::*

and finally, restart ssh service:

sudo systemctl restart sshd

Now, you can ssh your serve at -p 3000, like: ssh root@xxx.xxx.xxx.xxx -p3000

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment