Is it possible to configure a custom port for ssh to the ONTAP cluster other than using port 22 | NetApp | Page 1

signal plaza Dec 3, 2025, 5:49 PM

#

Is it possible to configure a custom port for ssh to the ONTAP cluster other than using port 22

north yacht Dec 3, 2025, 7:57 PM

#

https://kb.netapp.com/on-prem/ontap/OHW/OHW-KBs/Does_Clustered_Data_ONTAP_suppport_changing_default_SSH_port

NetApp Knowledge Base

Does Clustered Data ONTAP suppport changing default SSH port?

#

The answer is no

violet obsidian Dec 3, 2025, 9:00 PM

#

yeah. no idea why you would want to do that anyway (please don't say "for security").
You could use nginx or haproxy or similar to proxy ssh requests through another host on another port, but that seems to be overkill to me

north yacht Dec 3, 2025, 9:01 PM

#

Modify the "service-policy" to only allow management-SSH incoming from certain locations.

violet obsidian Dec 3, 2025, 9:07 PM

#

I did that with nginx in the past, I think the syntax was like this

stream {
  server {
    listen 2222;
    proxy_pass target_server:22;
  }
}

then ssh to your nginx server on port 2222

north yacht Dec 4, 2025, 1:12 AM

#

and be sure to set the service-policy to only allow management-ssh from that single host.

#Is it possible to configure a custom port for ssh to the ONTAP cluster other than using port 22