ssh,HTTP,ICMP timeout but IP not blocked by netfilter
Linux - GeneralThis Linux forum is for general Linux questions and discussion.
If it is Linux Related and doesn't seem to fit in any other forum then this is the place.
Notices
Welcome to LinuxQuestions.org, a friendly and active Linux Community.
You are currently viewing LQ as a guest. By joining our community you will have the ability to post topics, receive our newsletter, use the advanced search, subscribe to threads and access many other special features. Registration is quick, simple and absolutely free. Join our community today!
Note that registered members see fewer ads, and ContentLink is completely disabled once you log in.
If you have any problems with the registration process or your account login, please contact us. If you need to reset your password, click here.
Having a problem logging in? Please visit this page to clear all LQ-related cookies.
Get a virtual cloud desktop with the Linux distro that you want in less than five minutes with Shells! With over 10 pre-installed distros to choose from, the worry-free installation life is here! Whether you are a digital nomad or just looking for flexibility, Shells can put your Linux machine on the device that you want to use.
Exclusive for LQ members, get up to 45% off per month. Click here for more info.
ssh,HTTP,ICMP timeout but IP not blocked by netfilter
When i am unable to connect to one particular destination computer using ssh,curl,ping and its IP is not blocked in the iptables nor /etc/hosts.deny on CentOS 7, how do you discover if the block is remote or local and if local, do you have ideas on where it can be blocked (consider i tried various connection ways as mentioned above).
That remote computer works and is connectable from different IPs. Remote computer admin claims (he may be wrong) my IP is not blocked.
I would use tcpdump to see exactly which packets arrive at that computer.
For example:
Code:
tcpdump -i ens3f0 -v host 1.2.3.4
where 1.2.3.4 is the IP address from which you fail to connect to the computer in question, and ens3f0 is the interface (if you omit the interface, tcpdump will use the first real NIC; you can also use -i any).
The host 1.2.3.4 expression is a filter that only collects packets to or from that host. You can also filter by protocol, port and other criteria, and use boolean logic to combine several criteria.
When i am unable to connect to one particular destination computer using ssh,curl,ping and its IP is not blocked in the iptables nor /etc/hosts.deny on CentOS 7, how do you discover if the block is remote or local and if local, do you have ideas on where it can be blocked (consider i tried various connection ways as mentioned above).
That remote computer works and is connectable from different IPs. Remote computer admin claims (he may be wrong) my IP is not blocked.
...where you never followed up or answered questions. And you, AGAIN, don't provide details here either; it could be blocked on a firewall, load balancer, or at the ISP connection point. You tell us nothing about anything in the environment, and we aren't going to guess. But common sense should tell you that if you can connect from OTHER addresses but not ONE particular address, that the address in question is being denied. You mention a 'remote computer admin', but again don't tell us who they work for, why you doubt them, or what you see in the logs on either side...again, do you expect us to guess?
LinuxQuestions.org is looking for people interested in writing
Editorials, Articles, Reviews, and more. If you'd like to contribute
content, let us know.