How to Harden a Linux SSH Server (Port + Firewall + Fail2Ban)

Опубликовано: 12 Февраль 2026
на канале: The Swedish Sysadmin
388
17

In this quick tutorial, I’ll show you how to secure your SSH server on Ubuntu in 2025 by:

✅ Changing the default SSH port
✅ Using UFW to allow only trusted IPs
✅ Installing and configuring Fail2Ban to block brute-force attacks

💡 By the end, your server will be much more secure from automated bots and port scanners.

🔧 Tools used:
sshd_config for port change
ufw (Uncomplicated Firewall)
fail2ban with custom jail.local config

🔐 Recommended for VPS, home labs, and production servers.
👉 Don’t forget to subscribe for more sysadmin tips and secure server setups!

0:00 Video Overview
1:00 Change SSH port
3:21 Allow/deny SSH in Firewall
7:05 Install and config of Fail2Ban

#SSH #ServerSecurity #Fail2Ban #UFW #LinuxSecurity #SSHHardening #CyberSecurity #SysAdmin #Ubuntu #Debian #LinuxTips #SecureSSH #Port1337 #Firewall #ServerHardening