need some linux help with SSH, it wont work :(

[Adul]

i cant seem to get it to work outside of my local machine 🙁

port 22 is allowed through shorewall
hosts.allow has the ip range that the user is trying to connect from
hosts.deny deny all exept 127.0.0.1


any suggestions?

i get host closed connect when i try to connect via ssh

 

[Ken g6]

Well, let's start with basics (although I don't really know that much about Linux ssh). Can you ping the machine you want to ssh to?

 

[Adul]

i should be more clear


the machine i want to setup ssh on is a local linux box i have here. it can be ping just fine by my friend. however he can not connect via ssh.
i get host closed connect or something like that when they try to connect. i turned off shorewall, but i am not sure where else to look now.

 

[MereMortal]

I would make sure that port 22/tcp is open in ipchains or iptables (e.g., with the -L flag). Have your friend run an nmap on your IP to see that the port is open.

 

[CyGoR]

Originally posted by: Adul
i cant seem to get it to work outside of my local machine 🙁

port 22 is allowed through shorewall
hosts.allow has the ip range that the user is trying to connect from
hosts.deny deny all exept 127.0.0.1


any suggestions?

i get host closed connect when i try to connect via ssh

I don't know much about the host.deny file, but when it says "deny all exept 127.0.0.1" then it will block all connections EXEPT 127.0.0.1??
So it's obvious it will block the IP from your friends pc..

Do you have any other pc on the local network from where you can try to connect to?
I think the problem lies in the host.deny file.. you can experiment ofcourse by editing it..
Good luck!

 

[Adul]

Originally posted by: CyGoR

Originally posted by: Adul
i cant seem to get it to work outside of my local machine 🙁

port 22 is allowed through shorewall
hosts.allow has the ip range that the user is trying to connect from
hosts.deny deny all exept 127.0.0.1


any suggestions?

i get host closed connect when i try to connect via ssh

I don't know much about the host.deny file, but when it says "deny all exept 127.0.0.1" then it will block all connections EXEPT 127.0.0.1??
So it's obvious it will block the IP from your friends pc..

Do you have any other pc on the local network from where you can try to connect to?
I think the problem lies in the host.deny file.. you can experiment ofcourse by editing it..
Good luck!

i got rid of hosts.deny and everything works.

firewall is up and running has well. also the new irc channel for swf is running 🙂


http://swforums.com/swf/viewtopic.php?t=3313

 

[CyGoR]

cool 🙂
You can ofcourse create the host.deny again and say: Deny all exept (friends IP etc)

Shouldn't you be a lifer by now with all those posts??? :Q:Q

 

[Adul]

Originally posted by: CyGoR
cool 🙂
You can ofcourse create the host.deny again and say: Deny all exept (friends IP etc)

Shouldn't you be a lifer by now with all those posts??? :Q:Q

i was, then was promoted to elite 😛

also was temp The queen of nef

 

[Ken g6]

I thought that hosts.deny looked weird, but then I looked at the man page for hosts.deny. It says

ACCESS CONTROL FILES
The access control software consults two files. The search
stops at the first match:

· Access will be granted when a (daemon,client) pair
matches an entry in the /etc/hosts.allow file.

· Otherwise, access will be denied when a (dae­
mon,client) pair matches an entry in the
/etc/hosts.deny file.

· Otherwise, access will be granted.

A non-existing access control file is treated as if it
were an empty file. Thus, access control can be turned off
by providing no access control files.

So WTF happened? Poof?