Change SSH default port in Sophos XGS

Question

Hi Experts. 
 
 I'm willing to know if It is possible to change SSH default port to other than port 22 (port range available is 1:65535). The reason is to increase security on SSH access. 
 In Sophos UTM Firewall this change is very simple to do (Management>Shell Access>SSH Daemon Listen Port (box "port number" and apply), but in Sophos XGS I did not find any related configuration. 
 My system is: Sophos XGS 3300 appliance, SFOS 20.0.1 MR-1-Build342. 
 Thanks a lot!

Mayur Makvana · Accepted Answer

Hello, 
 Thank you for contacting Sophos Community! 
 Unfortunately, currently we cannot change the SSH port of Sophos OS. This is marked as Feature request and ID for this is SFSW-I-1387 for tracking it in future. 
 We suggest creating the local ACL rule for allowing access of the firewall.

LuCar Toni · Answer

It is quite easy to explain: there is no “real benefit” In changing the port of SSH while it has implications within the system itself.
so to speak: it gives false hope of security while it needs extra work of implementation.
So there was never a real use case of changing it and if there is no use case, there is likely no prioritisation.

Change SSH default port in Sophos XGS

Top Replies