SSH on Echo Eatta https://eatta.cn/tags/ssh/ Recent content in SSH on Echo Eatta Hugo zh-Hans © 2026 Echo Eatta. [蜀ICP备2025125428号](https://beian.miit.gov.cn/) [川公网安备51010502015297号](https://beian.mps.gov.cn/#/query/webSearch) Thu, 11 Jun 2026 19:29:11 +0800 开启 Linux/Fedora 远程 SSH 访问 https://eatta.cn/posts/linux-ssh-remote-access/ Thu, 11 Jun 2026 19:29:11 +0800 https://eatta.cn/posts/linux-ssh-remote-access/ <p>办公室里的个人电脑是 Win+Fedora 双系统,在家里偶尔会有访问 Fedora 的需要,内网穿透方案选择的是 <code>Zerotier-One</code>,远程连接使用 ssh。这里记录一下如何开启 <code>Linux/Fedora</code> 的远程 ssh 访问。</p> <h1 id="启动-ssh-服务并设置开机自启" class="relative group">启动 SSH 服务并设置开机自启 <span class="absolute top-0 w-6 transition-opacity opacity-0 -start-6 not-prose group-hover:opacity-100"><a class="group-hover:text-primary-300 dark:group-hover:text-neutral-700" style="text-decoration-line: none !important;" href="#%e5%90%af%e5%8a%a8-ssh-%e6%9c%8d%e5%8a%a1%e5%b9%b6%e8%ae%be%e7%bd%ae%e5%bc%80%e6%9c%ba%e8%87%aa%e5%90%af" aria-label="锚点">#</a></span></h1><div class="highlight"><pre tabindex="0" class="chroma"><code class="language-bash" data-lang="bash"><span class="line"><span class="cl"><span class="c1"># 启动服务</span> </span></span><span class="line"><span class="cl">sudo systemctl start sshd <span class="c1"># 部分系统服务名为 ssh(如Ubuntu)</span> </span></span><span class="line"><span class="cl">sudo systemctl start ssh <span class="c1"># 若上述失败,尝试此命令</span> </span></span><span class="line"><span class="cl"> </span></span><span class="line"><span class="cl"><span class="c1"># 设置开机自启</span> </span></span><span class="line"><span class="cl">sudo systemctl <span class="nb">enable</span> sshd </span></span></code></pre></div><h1 id="配置防火墙" class="relative group">配置防火墙 <span class="absolute top-0 w-6 transition-opacity opacity-0 -start-6 not-prose group-hover:opacity-100"><a class="group-hover:text-primary-300 dark:group-hover:text-neutral-700" style="text-decoration-line: none !important;" href="#%e9%85%8d%e7%bd%ae%e9%98%b2%e7%81%ab%e5%a2%99" aria-label="锚点">#</a></span></h1><h2 id="防火墙开放-ssh-服务端口" class="relative group">防火墙开放 ssh 服务端口 <span class="absolute top-0 w-6 transition-opacity opacity-0 -start-6 not-prose group-hover:opacity-100"><a class="group-hover:text-primary-300 dark:group-hover:text-neutral-700" style="text-decoration-line: none !important;" href="#%e9%98%b2%e7%81%ab%e5%a2%99%e5%bc%80%e6%94%be-ssh-%e6%9c%8d%e5%8a%a1%e7%ab%af%e5%8f%a3" aria-label="锚点">#</a></span></h2><div class="highlight"><pre tabindex="0" class="chroma"><code class="language-bash" data-lang="bash"><span class="line"><span class="cl">sudo firewall-cmd --permanent --add-service<span class="o">=</span>ssh </span></span><span class="line"><span class="cl"><span class="c1"># 因为下面会修改ssh的默认端口为2222,这里需要防火墙放开端口</span> </span></span><span class="line"><span class="cl">sudo firewall-cmd --permanent --add-port<span class="o">=</span>2222/tcp </span></span><span class="line"><span class="cl">sudo firewall-cmd --reload </span></span></code></pre></div><h2 id="设置-selinux-自定义端口" class="relative group">设置 SELinux 自定义端口 <span class="absolute top-0 w-6 transition-opacity opacity-0 -start-6 not-prose group-hover:opacity-100"><a class="group-hover:text-primary-300 dark:group-hover:text-neutral-700" style="text-decoration-line: none !important;" href="#%e8%ae%be%e7%bd%ae-selinux-%e8%87%aa%e5%ae%9a%e4%b9%89%e7%ab%af%e5%8f%a3" aria-label="锚点">#</a></span></h2><p>CentOS 和 Fedora 的 SELinux 会拦截自定义 ssh 端口,需要添加自定义规则</p>