在root用户下添加编辑 ~/.bashrc
userlogin=`echo $SSH_CONNECTION | awk '{print $1}'` #获取登录用户的ip地址
nodenyuser=192.168.10.111 #允许登录的ip地址
nodenyuser1=192.168.10.123
if [ $userlogin != $nodenyuser ] ; then #判断是否为禁止的ip地址
if [ $userlogin != $nodenyuser1 ] ; then
echo "deny"
userclient=`w | grep -v grep | grep $userlogin | awk '{print $2}'`
echo $userclient
ps -ef | grep $userclient | grep -v grep | grep sshd | awk '{print $2}' | xargs -I {} kill -9 {} # 如果是禁止的ip地址直接结束会话
fi
fi
userlogin=`echo $SSH_CONNECTION | awk '{print $1}'` #获取登录用户的ip地址
nodenyuser=192.168.10.111 #允许登录的ip地址
nodenyuser1=192.168.10.123
if [ $userlogin != $nodenyuser ] ; then #判断是否为禁止的ip地址
if [ $userlogin != $nodenyuser1 ] ; then
echo "deny"
userclient=`w | grep -v grep | grep $userlogin | awk '{print $2}'`
echo $userclient
ps -ef | grep $userclient | grep -v grep | grep sshd | awk '{print $2}' | xargs -I {} kill -9 {} # 如果是禁止的ip地址直接结束会话
fi
fi