CentOS9 sshのポート番号を変更する

$ sudo cp /etc/ssh/sshd_config{,.`date +%Y%m%d%H%M%S`}

$ sudo nano /etc/ssh/sshd_config

<変更箇所>
#port 22
port 12233

#PermitRootLogin yes
PermitRootLogin no

$ sudo firewall-cmd --add-port=12233/tcp --zone=public --permanent

$ sudo firewall-cmd --reload

$ sudo semanage port -a -t ssh_port_t -p tcp 12233

$ sudo systemctl restart sshd

$ sudo less /var/log/secure

Aug 29 10:10:01 localhost sudo[35765]: pam_unix(sudo:session): session opened for user root(uid=0) by testuser(uid=1000)
Aug 29 10:10:12 localhost sudo[35765]: pam_unix(sudo:session): session closed for user root
Aug 29 10:10:21 localhost sudo[35781]: testuser : TTY=pts/0 ; PWD=/home/testuser ; USER=root ; COMMAND=/bin/systemctl restart sshd
Aug 29 10:10:21 localhost sudo[35781]: pam_unix(sudo:session): session opened for user root(uid=0) by testuser(uid=1000)
Aug 29 10:10:21 localhost sshd[908]: Received signal 15; terminating.
Aug 29 10:10:22 localhost sshd[35785]: Server listening on 0.0.0.0 port 12233.
Aug 29 10:10:22 localhost sshd[35785]: Server listening on :: port 12233.
Aug 29 10:10:22 localhost sudo[35781]: pam_unix(sudo:session): session closed for user root

$ sudo lastb

testuesr ssh:notty    xxx.xxx.xxx.xxx   Thu Aug 25 16:14 - 16:14  (00:00)
testuser pts/1                         Wed Aug 24 14:55 - 14:55  (00:00)
testuser ssh:notty    xxx.xxx.xxx.xxx   Mon Aug 22 12:23 - 12:23  (00:00)
testuser ssh:notty    xxx.xxx.xxx.xxx   Mon Aug 22 12:23 - 12:23  (00:00)
testuser ssh:notty    xxx.xxx.xxx.xxx   Mon Aug 22 12:05 - 12:05  (00:00)
testuser ssh:notty    xxx.xxx.xxx.xxx   Mon Aug 22 12:05 - 12:05  (00:00)