On Mo, 2016-09-26 at 10:58 -0500, Lonnie Abelbeck wrote: > On Sep 26, 2016, at 10:39 AM, Armin Tüting <armin.tueting@tueting-onl > ine.com> wrote: > > > > > On Mo, 2016-09-26 at 09:12 -0500, Lonnie Abelbeck wrote: > > > > > > 1) When I spoke of "user.conf" I meant the file > > > /mnt/kd/rc.conf.d/user.conf which does not have anything enabled > > > by > > > default. > > SYSLOGHOST, DIALING_PREFIX_NUMBERS, SENSEMODS, ALERT_SOUNDS, > > VAR_SIZE, > > TMP_SIZE and VI_EDITOR_OPTIONS. > > Looks fine. > > > > > > > > > > 3) To test, disable the ssh-brute-force, ids-protection and > > > adaptive- > > > ban plugins and restart the firewall to start at the base > > > configuration. > > I've disabled the plugins you've mentioned! I still can't ping nor > > ssh > > to EXTIF! > > Let's look deeper, from the AstLinux box console or LAN CLI type > (assuming EXTIF is eth0): > -- > tcpdump -i eth0 dst port 22 and tcp > -- > then try to to ssh in via the external interface. Any packets ? Yup! But, why ist the paket length zero? tcpdump -i eth0 dst port 22 and tcp tcpdump: verbose output suppressed, use -v or -vv for full protocol decode listening on eth0, link-type EN10MB (Ethernet), capture size 262144 bytes 18:08:30.358158 IP fqdn.35122 > fqdn.ssh: Flags [S], seq 3000642876, win 29200, options [mss 1460,sackOK,TS val 72725303 ecr 0,nop,wscale 7], length 0
> > Also try: > -- > arp-scan -lI eth0 > -- > and make sure you don't colliding IP's. No double ip addresses! But, where is my AstLinux arp-scan -lI eth0 Interface: eth0, datalink type: EN10MB (Ethernet) Starting arp-scan 1.9 with 256 hosts (http://www.nta-monitor.com/tools/ arp-scan/) 192.168.60.1 00:00:00:d0:64:ce CONNECT AS 192.168.60.5 00:00:00:08:67:09 Manufacturer > > Also try: > -- > ip route ip route default via 192.168.60.1 dev eth0 metric 2 192.168.10.0/24 via 192.168.40.1 dev eth1 metric 1 192.168.40.0/24 dev eth1 proto kernel scope link src 192.168.40.6 192.168.50.0/24 via 192.168.40.1 dev eth1 metric 1 192.168.60.0/24 dev eth0 proto kernel scope link src 192.168.60.6 Armin. ------------------------------------------------------------------------------ _______________________________________________ Astlinux-users mailing list Astlinux-users@lists.sourceforge.net https://lists.sourceforge.net/lists/listinfo/astlinux-users Donations to support AstLinux are graciously accepted via PayPal to pay...@krisk.org.
