Hi again,
I follow with my own fight with PF. ( sorry to send other mail, but i can't
really fix this ).
If I reduce pf.conf to the following rules:
block in all
pass in on $int_if proto {tcp,udp] from any to any port 22 keep state
I can connect to ssh, but it takes at least on minute to ask me
On Fri, May 04, 2007 at 08:00:06AM +0200, Tang Tse wrote:
Hi again,
I follow with my own fight with PF. ( sorry to send other mail, but i can't
really fix this ).
If I reduce pf.conf to the following rules:
block in all
pass in on $int_if proto {tcp,udp] from any to any port 22 keep
Tang Tse wrote:
Thanks all of you.
I have an internal DNS server ( a vmware machine on my desktop computer
) so name resolution shoudn't be a problem, isn't it?
When you say allow dns lookups, you mean to open dns port?
Thanks!!
Tang
2007/5/4, Fred Crowson [EMAIL PROTECTED] mailto:[EMAIL
Tang Tse wrote:
Thanks for the answear,
Is it secure to open DNS ports to outside world? Or you mean to open open
outgoing DNS conections? If i want to redirect incomming ssh connections
from internet to some inside server, should i open DNS incoming?
Thanks!!
Not necessarily - but how
err. Maybe it's me but to answer his original question - it's more
than likely a DNS lookup issue.
Have a look in /etc/ssh/sshd_config and add in:
UseDNS no
restart the sshd daemon with a kill -HUP command and you should have
no problems.
Alternatively, you could fix your dns lookup
5 matches
Mail list logo
