For OS login, it is recommended to use passphrase protected SSH key pairs instead of passwords, and to not allow remote root login. To do this, take the following steps:
Generate a passphrase-protected SSH key for each system that needs to access the server.
Disable SSH password authentication.
Disable root login.
Zixi Feeders, Zixi Broadcasters and Zixi Receivers have a section under Settings that enables you to define reverse tunnels to a remote SSH server, in order to allow accessing the application through a secure SSH tunnel remotely. Make sure to stop/delete all tunnels if remote access is not desirable.
To configure an SSH Tunnel in Zixi Feeder/Receiver:
Go to Settings > SSH Tunnels.
In the Server Connection section configure the server connection, as described in the table below.
Click Apply.
In the Reverse tunnels section, click Add. The Tunnel details dialog appears:
In the Remote Source Port field, type the Remote Source Port that will be used to connect.
In the Local Destination IP field, type the IP address of the Zixi Feeder/Receiver.
In the Local Destination Port field, type the port number in the Zixi Feeder/Receiver for the specific reverse SSH tunnel.
Click OK.
To configure an SSH Tunnel in Zixi Broadcaster:
Go to Settings > SSH Connections.
Click + Add connection. The Add SSH connection dialog appears.
Configure the server connection, as described in the table below.
Click Apply. The configuration will be added to the Defined Connections section on the screen.
Click on the name of the new SSH connection.
In the Reverse Tunnels field, click Add. The Tunnel details dialog appears.
In the Remote Source Port field, specify the port that will be used to connect.
In the Local Destination IP field, specify the IP address of the Zixi Broadcaster.
In the Local Destination Port field, specify the port number in the Zixi Broadcaster for the specific reverse SSH tunnel.
Click OK.
Field
Description
Server connection
Host
Specify the Host name or IP address of the remote server for the SSH connection.
SSH Port
Specify the port for the SSH connection.
Default: 22
Username
Specify the username required for SSH connection.
Default: the username on the remote computer is the same as that on the local one.