Register a free account to unlock additional features at BleepingComputer.com
Welcome to BleepingComputer, a free community where people like yourself come together to discuss and learn how to use their computers. Using the site is easy and fun. As a guest, you can browse and view the various discussions in the forums, but can not create a new topic or reply to an existing one unless you are logged in. Other benefits of registering an account are subscribing to topics and forums, creating a blog, and having no ads shown anywhere on the site.


Click here to Register a free account now! or read our Welcome Guide to learn how to use this site.

Generic User Avatar

new to ssh. what can I transfer and how to block with firewall


  • Please log in to reply
12 replies to this topic

#1 ejames82

ejames82

  •  Avatar image
  • Members
  • 412 posts
  • OFFLINE
  •  
  • Location:oswego, ny
  • Local time:12:00 AM

Posted 18 December 2022 - 09:37 PM

hello,

 

I recently set up ssh on two linux mint computers in the same home and connected to the same router, both mine.  and I have possibly a couple of questions.

 

first, is ssh capable or, better yet, ideal for moving videos (I saw a youtube vid that stated it was only worked for text)?

 

if it IS ideal for moving videos, how would I go about configuring my ufw firewall (terminal commands are ok) so I can block (not allow) any other computer besides mine to connect via ssh?

 

here I am connecting for the first time.  I am unable to use IP address (I don't know how, when I tried it didn't work) so I resorted to using the computer hostname. 

 

 

 

ed@ed-umaNOTsecure:~$ ssh ed@ed-To-be-filled-by-O-E-M.

local
The authenticity of host 'ed-to-be-filled-by-o-e-m.local (192.168.1.102)' can't be established.
ECDSA key fingerprint is SHA256:xsMDdzlyfKYY+w7IwJtORF9i/jdG9AhkJC3FMM78US8.
Are you sure you want to continue connecting (yes/no/[fingerprint])? yes
Warning: Permanently added 'ed-to-be-filled-by-o-e-m.local,192.168.1.102' (ECDSA) to the list of known hosts.
ed@ed-to-be-filled-by-o-e-m.local's password:
2 updates can be applied immediately.
To see these additional updates run: apt list --upgradable
Last login: Sat Dec 17 15:05:47 2022 from 127.0.0.1
ed@ed-To-be-filled-by-O-E-M:~$
 

 

thank you



BC AdBot (Login to Remove)

 


#2 cryptodan

cryptodan

    Bleepin Madman


  •  Avatar image
  • Members
  • 35,210 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:USA
  • Local time:05:00 AM

Posted 18 December 2022 - 10:54 PM

What are you wanting to do.

US Navy Veteran from 2002 to 2006

Masters in Computer and Digital Forensics Expert - Stevenson University Alumni 2015

Arch Desktop - https://termbin.com/epij

Arch Laptop - https://www.termbin.com/dnwk

Ubuntu Server - https://termbin.com/zvra


#3 ejames82

ejames82
  • Topic Starter

  •  Avatar image
  • Members
  • 412 posts
  • OFFLINE
  •  
  • Location:oswego, ny
  • Local time:12:00 AM

Posted 19 December 2022 - 08:29 AM

hi cryptodan

 

I am actually trying to avoid having to plug in flash drives regularly to move lots of files.  if I don't write a post it note that says what I've done and when, I lose track.  if I can transfer all my files in one motion this would be an improvement from an organizational standpoint.  one computer I use for car stuff, the other for employment stuff, etc, etc,.  with ssh I could be sending different groups of files in both directions as needed.

excuse me if I have the terminology wrong, if sftp, rsync and scp take over once the connection is established.

if it can't move video files, it's not going to be worth it and I'll go back to plugging in external storage. 

 

1. can this new method of file tranfer move lots of data at a reasonable speed (mostly video)?  if yes,

2. how can I make a ufw rule to block all other computers?

 

thanks



#4 cryptodan

cryptodan

    Bleepin Madman


  •  Avatar image
  • Members
  • 35,210 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:USA
  • Local time:05:00 AM

Posted 19 December 2022 - 11:11 AM

How do you connect all the other machines to your network?

 

How many machines are in your network?

 

Will you be doing the transfer remotely as well?


US Navy Veteran from 2002 to 2006

Masters in Computer and Digital Forensics Expert - Stevenson University Alumni 2015

Arch Desktop - https://termbin.com/epij

Arch Laptop - https://www.termbin.com/dnwk

Ubuntu Server - https://termbin.com/zvra


#5 ejames82

ejames82
  • Topic Starter

  •  Avatar image
  • Members
  • 412 posts
  • OFFLINE
  •  
  • Location:oswego, ny
  • Local time:12:00 AM

Posted 19 December 2022 - 01:04 PM

How do you connect all the other machines to your network?

wired.  there is a router the computers are wired into and a modem before that.  all wired.

 

How many machines are in your network?

just the two

 

Will you be doing the transfer remotely as well?

yes, if I'm able to



#6 cryptodan

cryptodan

    Bleepin Madman


  •  Avatar image
  • Members
  • 35,210 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:USA
  • Local time:05:00 AM

Posted 19 December 2022 - 01:18 PM

Then you don't want to setup ufw to block other computers but you can use port forwarding on router to hide your ssh server from external scans and setup sshd to not broadcast its header information.

US Navy Veteran from 2002 to 2006

Masters in Computer and Digital Forensics Expert - Stevenson University Alumni 2015

Arch Desktop - https://termbin.com/epij

Arch Laptop - https://www.termbin.com/dnwk

Ubuntu Server - https://termbin.com/zvra


#7 ejames82

ejames82
  • Topic Starter

  •  Avatar image
  • Members
  • 412 posts
  • OFFLINE
  •  
  • Location:oswego, ny
  • Local time:12:00 AM

Posted 19 December 2022 - 01:24 PM

is this type of data transfer reasonably capable?



#8 cryptodan

cryptodan

    Bleepin Madman


  •  Avatar image
  • Members
  • 35,210 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:USA
  • Local time:05:00 AM

Posted 19 December 2022 - 01:34 PM

Yes it is, as I have been doing it for the last 21 years.

 

Protocols in use will be SSH, SFTP, and SCP.

 

SCP Examples - https://haydenjames.io/linux-securely-copy-files-using-scp/

 

SFtp Examples - https://www.tecmint.com/sftp-command-examples/


US Navy Veteran from 2002 to 2006

Masters in Computer and Digital Forensics Expert - Stevenson University Alumni 2015

Arch Desktop - https://termbin.com/epij

Arch Laptop - https://www.termbin.com/dnwk

Ubuntu Server - https://termbin.com/zvra


#9 ejames82

ejames82
  • Topic Starter

  •  Avatar image
  • Members
  • 412 posts
  • OFFLINE
  •  
  • Location:oswego, ny
  • Local time:12:00 AM

Posted 19 December 2022 - 01:53 PM

you can use port forwarding on router to hide your ssh server from external scans and setup sshd to not broadcast its header information.

 

in specific

hide your ssh server from external scans and setup sshd to not broadcast its header information.

I am looking through the program and I don't see PORT FORWARDING, but I do see FORWARDING.  when I click on it it lists:

 

virtual servers

port triggering

DMZ

UPnP

 

I'm checking through the info given, but so far I don't see anything promising



#10 cryptodan

cryptodan

    Bleepin Madman


  •  Avatar image
  • Members
  • 35,210 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:USA
  • Local time:05:00 AM

Posted 19 December 2022 - 02:20 PM

What router do you have?


US Navy Veteran from 2002 to 2006

Masters in Computer and Digital Forensics Expert - Stevenson University Alumni 2015

Arch Desktop - https://termbin.com/epij

Arch Laptop - https://www.termbin.com/dnwk

Ubuntu Server - https://termbin.com/zvra


#11 ejames82

ejames82
  • Topic Starter

  •  Avatar image
  • Members
  • 412 posts
  • OFFLINE
  •  
  • Location:oswego, ny
  • Local time:12:00 AM

Posted 19 December 2022 - 03:02 PM

this is weird.  I thought I already posted this.  it said 'saving post' but never did save.  I had to repost.

 

TP link

TL-R860



#12 cryptodan

cryptodan

    Bleepin Madman


  •  Avatar image
  • Members
  • 35,210 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:USA
  • Local time:05:00 AM

Posted 19 December 2022 - 03:24 PM

follow this http://www.pcwintech.com/port-forwarding-tp-link-tl-r860-tp-link-firmware


US Navy Veteran from 2002 to 2006

Masters in Computer and Digital Forensics Expert - Stevenson University Alumni 2015

Arch Desktop - https://termbin.com/epij

Arch Laptop - https://www.termbin.com/dnwk

Ubuntu Server - https://termbin.com/zvra


#13 ejames82

ejames82
  • Topic Starter

  •  Avatar image
  • Members
  • 412 posts
  • OFFLINE
  •  
  • Location:oswego, ny
  • Local time:12:00 AM

Posted 23 December 2022 - 08:57 PM

thanks cryptodan






1 user(s) are reading this topic

0 members, 1 guests, 0 anonymous users