RHEL 6: Change OpenSSH Port To 1255 ( SELinux Config )

by on May 13, 2011 · 6 comments· LAST UPDATED May 13, 2011

in

I've edited /etc/ssh/sshd_config to change the port number:

Port 1255

However, I'm getting an error as follows:

sshd[26792]: error: Bind to port 1255 on 192.168.1.100 failed: Permission denied

How do I change default OpenSSH port number from 22 to 1255 under RedHat Enterprise Linux server version 6 and SELinux?

By default SELinux only allows port number 22. To display current port contexts, enter:
# semanage port -l | grep ssh
Sample outputs:

ssh_port_t                     tcp      22

To add port 1255 to port contexts, enter:
# semanage port -a -t ssh_port_t -p tcp 1255
You can verify new settings, enter:
# semanage port -l | grep ssh
Sample outputs:

ssh_port_t                     tcp      1255,22

Finally, reload or restart the OpenSSH server, enter:
# /sbin/service sshd reload
Verify, sshd is listing on TCP port # 1255, enter:
# netstat -tulpn | grep 1255

TwitterFacebookGoogle+PDF versionFound an error/typo on this page? Help us!

{ 6 comments… read them below or add one }

1 Bhanu Prakash May 17, 2011 at 2:43 am

I think it’s throwing you permissions error but not the other way..

Reply

2 ALane June 7, 2011 at 8:50 pm

If you’re changing the port to 1255, you should really remove the allow statement for port 22.
semanage port -d -t ssh_port_t -p tcp 22

Reply

3 Sergani June 21, 2011 at 11:59 am

i’ll double that as well…

Reply

4 JMath March 31, 2012 at 7:55 am

Thanks, I was thinking exactly the same.

Reply

5 Jay March 20, 2012 at 7:03 am

I’m on CentOS 6.2, and I can’t remove Port 22 as per the instructions above — SElinux complains that port 22 is part of the ‘policy’ and can’t be removed. How do I fix this?

Reply

6 JMath March 31, 2012 at 7:56 am

Actually, I’ve spoke to soon and have encountered this as well.

Reply

Leave a Comment

Tagged as: , , , , , , , , , , ,

Previous Faq:

Next Faq: