How to restrict IPs that can SSH

I have Chef nodes that have a lot of brute force attempts of attempting to log in via SSH.

I am new to Chef. If I restrict which IPs can SSH to the nodes, linux servers, using UFW, will Chef no longer work? Or impact Chef in anyway?

The only time ssh is used is if you are bootstrapping a node from your workstation, or running inspec scans ad-hoc from automate compliance tab or your workstation. Otherwise the knife command and chef clients all talk to the servers api via https on port 443.

1 Like

Thank you!