Re: SSH through Firewall
Date: 8 Oct 2005 02:55:08 -0700
> > Eth0 (external IP)----Firewall----Internal Network LAN(internal IPs)
We are using IPTABLES firewall on Redhat Linux.
> > We have started firewall and blocked ssh initially. Now we need to open
> > ssh port in the firewall. From within the Internal I can SSH firewall
> > and be able login but even after opening the port 22 and starting sshd
> > service at Firewall I am unable to get into the system from the outside
> > Internet. Any pointers shall be welcome.
> > Many thanks
> > Karmath
> ssh xx.yy.zz.aa 255.255.255.255 outside
> ssh 0.0.0.0 0.0.0.0 outside
> ssh 192.168.1.0 255.255.255.0 inside
> ssh timeout 5
> xx.yy.zz.aa (external IP)
> 192.168.1.0 (your internal network)
> do not forget add some user and set password
- Re: Eingehende Netzverbindung zu anderem Rechner tunneln
... Wozu dabei eine Firewall? ... Der Rechner soll zum Internet hin nur ... Dienste fuer das gesamte Internet angeboten werden sollen, ... Vergiss FTP, Das Protokoll ist nur schwer ueber z.B. ssh zu tunneln, ...
- packet loss to firewall while Internet link is down
... When the Internet link goes down, ssh refuses ... to allow connection from within the LAN to our BSD ... When the Internet is down, the CPU load factor on the ... FreeBSD firewall is low, but the number of TCP packets ...
- iptables leaves 80/tcp `open ...why?
... a linux firewall protects the DMZ & internal lan from the Internet. ... I only wish 22/tcp (SSH) to be allowed into the firewall itself, ... iptables -N bad-if ...
- Re: [fw-wiz] Is NAT in OpenBSD PF UPnP enabled or Non UPnP?
... >> I start by not giving logins and SSH access to users I don't trust. ... a network topology which goes around the ... >> firewall and thus is a serious hole to network security. ... >> have access via UPnP to, well, anything that device might happen to ...
- Re: ssh attempts
... the excellent iptables firewall you probably already have on your system. ... consider changing the port SSH listens on. ... Login to account webmaster not allowed or account non-existent. ... Computer Emergency Response Teams, and Digital Investigations. ...