Complete Guide to Configuring SSH in Ubuntu / Debian - Tutorial Boy -->
Home
Ubuntu

Complete Guide to Configuring SSH in Ubuntu / Debian



SSH has become the default method of accessing a remote Linux server these days.

SSH stands for Secure Shell and it’s a powerful, efficient, and popular network protocol used to establish communication between two computers remotely. And let’s not forget the secure part of its name; SSH encrypts all traffic to prevent attacks like hijacking and eavesdropping while offering different authentication methods and a myriad of configuration options.

In this beginner’s guide, you’ll learn:

  • The basic concept of SSH
  • Setting up SSH server (on the system you want to access remotely)
  • Connecting to remote server via SSH from the client machine (your personal computer)

The absolute basics of SSH

Before you see any configuration process, it will be better to go through the absolute basic concept of SSH.

The SSH protocol is based on server-client architecture. The “server” allows the “client” to be connected over a communication channel. This channel is encrypted and the exchange is governed by the use of public and private SSH keys.

ssh diagram        

Configuring SSH Server on Ubuntu

Setting up SSH is not complicated and just needs a few steps to do it.

Prerequisites

  • A user with sudo privileges on the server machine
  • Internet connection to download the required packages
  • At least another system in your network. It can be another computer on your LAN, a remote server via Internet, or a virtual machine hosted on your computer.

Again, the SSH server installation should be done on the system that you want to act as a server and to which you want to connect remotely via SSH.

Step 1: Install required packages

Let’s start by opening a terminal window to enter the necessary commands.

Remember to update your Ubuntu system before installing new packages or software to make sure that you are running the latest versions.

sudo apt update && sudo apt upgrade

The package you need to run SSH Server is provided by openssh-server component from OpenSSH:

sudo apt install openssh-server

Step 2: Checking the status of the server

Once the downloading and installation of the package is done the SSH service should be already running, but to be sure we will check it with:

service ssh status

You may also use the systemd commands:

sudo systemctl status ssh

You should see something like this, with the word Active highlighted. Hit   to return to the command prompt. 

If in your case the service is not running you will have to activate like this:

sudo systemctl enable --now ssh

Step 3: Allowing SSH through the firewall

Ubuntu comes with a firewall utility called UFW (UncomplicatedFirewall) which is an interface for iptables that in turn manages the network’s rules. If the firewall is active, it may prevent the connection to your SSH Server.

To configure UFW so that it allows the wanted access, you need to run the following command:

sudo ufw allow ssh

The status of UFW can be checked running sudo ufw status

At this time our SSH Server is up and running, just waiting for a connection from a client.

Connecting to the remote system from your local machine

Your local Linux system should already have SSH client installed. If not, you may always install it using the following command on Ubuntu:

sudo apt install openssh-client

To connect to your Ubuntu system you need to know the IP address of the computer and use the ssh command, like this:

ssh username@address

Change username to your actual user in the system and address to the IP address of your Ubuntu machine.

If you don’t know the IP address of your computer you can type ip a in the terminal of the server and check the output.

As can be seen here my IP address is 192.168.122.1. Let’s try connecting using the username@address format.

ssh cyber@192.168.122.1.

The first time you connect to a SSH server, it will ask for permission to add the host. Type yes and hit Enter to continue.


Immediately SSH tells you that the host was permanently added and then asks for the password assigned to the username. Type in the password and hit Enter one more time.

You will be logged into your Ubuntu system remotely!👍

Now you can work in your remote system’s terminal as normal.

Closing the SSH connection

To close the connection you just need to type exit and it will close it at once, without asking for confirmation.

Stopping and Disabling SSH in Ubuntu

If you want to stop SSH service you will need this command:

sudo systemctl stop ssh

This will stop the service until you restart it or until the system is rebooted. To restart it, type:

sudo systemctl start ssh

Now, if you want to disable it from starting during system boot, use this:

sudo systemctl disable ssh

This won’t stop the service from running during the current session, just from loading during startup. If you want to let it start again during system boot, type:

sudo systemctl enable ssh

Other SSH clients

The tool ssh is included in most *nix systems, from Linux to macOS, but those are not the only options in existence, here are a couple of clients that can be used from other operating systems:

  • PuTTY is a free SSH client for Windows and it’s open source. It’s full of features and very easy to use. If you are connecting to your Ubuntu machine from a Windows station, PuTTY is a great option.
  • JuiceSSH is an amazing tool for Android users. If you are on the go and need a mobile client to connect to your Ubuntu system, I amply recommend giving JuiceSSH a go. It’s been around for almost 10 years and it’s free to use.
  • And finally, Termius is available for Linux, Windows, macOS, iOS, and Android. It has a free tier version and also several premium options. If you are running a lot of servers and working with teams sharing connections then Termius is a good option for you.

Post a Comment