Important note about SSL VPN compatibility for 20.0 MR1 with EoL SFOS versions and UTM9 OS. Learn more in the release notes.

Thread Info
  • State Verified Answer
  • Locked Locked
  • Replies 7 replies
  • Answers 1 answer
  • Subscribers 40 subscribers
  • Views 1410 views
  • Users 0 members are here
Options
Suggested
This discussion has been locked.
You can no longer post new replies to this discussion. If you have a question you can start a new discussion

Change SSH default port in Sophos XGS

Antonio Ferreira1

Hi Experts. 

I'm willing to know if It is possible to change SSH default port to other than port 22 (port range available is 1:65535). The reason is to increase security on SSH access.

In Sophos UTM Firewall this change is very simple to do (Management>Shell Access>SSH Daemon Listen Port (box "port number" and apply), but in Sophos XGS I did not find any related configuration.

My system is: Sophos XGS 3300 appliance, SFOS 20.0.1 MR-1-Build342.

Thanks a lot!



This thread was automatically locked due to age.
Parents
  • +1

    Hello,

    Thank you for contacting Sophos Community!

    Unfortunately, currently we cannot change the SSH port of Sophos OS. This is marked as Feature request and ID for this is SFSW-I-1387 for tracking it in future.

    We suggest creating the local ACL rule for allowing access of the firewall.

    Mayur Makvana
    Technical Account Manager | Global Customer Experience
    Sophos Support Videos | Knowledge Base  |  @SophosSupport | Sign up for SMS Alerts |
    If a post solves your question please use the 'Verify Answer' button.

  • 0 in reply to Mayur Makvana

    Hi Mayur and thaks for the feedback.

    The access to the Firewall is not the problem, I can access normaly via web gui and SSH. However, accessing Firewall shell via SSH default port 22 it is not a safe way to work. To me is very weird that in Sophos UTM this feature is available and it was retired in Sophos XGS. Anyway, I hope in next updates it can be solved. Thanks.

Reply
  • 0 in reply to Mayur Makvana

    Hi Mayur and thaks for the feedback.

    The access to the Firewall is not the problem, I can access normaly via web gui and SSH. However, accessing Firewall shell via SSH default port 22 it is not a safe way to work. To me is very weird that in Sophos UTM this feature is available and it was retired in Sophos XGS. Anyway, I hope in next updates it can be solved. Thanks.

Children
Unfiltered HTML