On Tue, Sep 12, 2006 at 09:59:30AM -0700, Stewart Stremler wrote:
> begin quoting Lan Barnes as of Tue, Sep 12, 2006 at 09:40:13AM -0700:
> > On Tue, Sep 12, 2006 at 09:10:32AM -0700, Stewart Stremler wrote:
> > > begin quoting Lan Barnes as of Tue, Sep 12, 2006 at 09:10:31AM -0700:
> > > > Please remind me again what the configuration issues are for having a
> > > > box running sshd accept ssh connections within an intranet.
> > > >
> > > > My laptop can be pinged and I can ssh out, but when I try to ssh into it
> > > > from elsewhere, I get a no route to host error. I've tried comparing the
> > > > conf files in /etc/ssh (sshd_ and ssh_) with no flash of insight.
> > >
> > > If you can ping it, how can you get a no route to host?
> >
> > Beats me. That's why I asked.
>
> Heh.
>
> > > > The laptop is running FC 5 and the other machines are all in FC 4. Don't
> > > > know if that matters.
> > >
> > > Have you tried using nmap instead of ping to see what's there?
> >
> > >From which machine?
> ^-- ???
>
> >From the machine that could ping it. Or are you pinging your laptop
> from your laptop?
>
> > > What does the output of "netstat -nr" look like?
> >
> > >From which machine?
> ^-- ???
You mean the unexplained ">"? Again, beats me. I use mutt with vi, and
sometimes (but not always) it adds a pointy bracket to one of my lines
between edit and send.
>
> > I can get and post responses from the machines trying to ssh into the
> > laptop, but I'll have to go home to run anything on the laptop since I
> > can't ssh in.
>
> Hm... I was under the impression that you were on a 192.168 subnet, not
> that this was a home/work sort of thing. Now I'm thinking that you have
> a firewall and a NAT box doing their job (firewall is blocking incoming
> connections, NAT box is translating from 192.168.x.y to whatever your
> public IP is).
>
You're correct. It's all inside. Here are my ssh paths:
router <-only-> linus ---- hendriena ---- gypsy
Now from the outside I can ssh into linus, and from linus I can
ping/ssh hendriena, but from linus I can only ping gypsy. So I go home
and go to a workstation (hendriena); and I can ping/ssh linus, but
I can only ping gypsy.
So the problem is there within, but I saw it first from without.
--
Lan Barnes
Linux Guy, SCM Specialist
Tcl/Tk Enthusiast
[H]istory is history -- whether it's bad or good or criminal, it doesn't
make a difference. An act, a deed, remains part of history forever.
- Rochus Misch, Hitler's bodyguard, in a 2005 interview
--
[email protected]
http://www.kernel-panic.org/cgi-bin/mailman/listinfo/kplug-list
