"Connection Reset By Peer" with SSH

YMJ · 03-21-2003, 08:44 AM

GREETINGS

I just installed a Redhat 7.3 as Server box.

The SSH is running ( ps )
The SSH is Listening ( nmap/ netstat )

However, when I try to connect to linux from Other machines, it showed me "Connection Reset By Peer".

I check also telnet and ftp services, and it showed me the same message although they are listening at port 21, 23 and xinetd is also running.

I can't see any problem with configuration files?

What do you think? any suggestions?

Regards

-YMJ

osx · 03-21-2003, 08:49 AM

Hi there

Sounds like a firewall issue to me

Where are you trying to connect to your box from?
Are there any routers/gateways/firewalls in the way ?

HTH

YMJ · 03-21-2003, 08:56 AM

Hi osx

Yes there is a firewall but only to connect internet.

all computers are in the same network.

there are other unix machines which i can connect via telnet or ftp.

but, To be honest, i am not firewall expert, i have to check that firewall.

dsltech · 03-21-2003, 09:00 AM

what other machines are you trying to connect from? (linux/windoze). are you running samba?

osx · 03-21-2003, 09:03 AM

Try connecting from the same computer that these daemons are running on

i.e. from command prompt on the server box
ssh -l your_username 127.0.0.1

I think red hat install some really basic firewall by default

Check ... chkconfig
(can't remember the rest becuase I don't use red hat anymore

)
and look for ipchains and iptables - disable them if they are there
(don't think you need to flush them first) and reboot.

Capt_Caveman · 03-21-2003, 09:24 AM

chkconfig --list | grep iptables

Though if iptables is turned on you shouldn't be able to see SSH listening when you nmap it.

Check /etc/hosts.allow to see if you have an sshd entry for your clients ip

osx · 03-21-2003, 09:36 AM

Indeed

[quickly salvaging the mistake

] - but he could have nmaped from localhost which could be allowed in the firewall

Just use netstat -pant to check for open ports on localhost

YMJ · 03-21-2003, 11:23 PM

Hi all

--------------
dsltech:

currently, i am not using samba.
i am trying to connect from both (Linux/win).
Linux showed me: connection refused
Win showed me: connection reset by peer
---------------------
Capt_Caveman & osx

results from (chkconfig --list | grep iptables & chkconfig --list | grep ipchains):

iptables 0 : off 1 : off 2 : on 3 : on 4 : on 5 : on 6 : off

ipchains 0 : off 1 : off 2 : on 3 : on 4 : on 5 : on 6 : off

-----------------

they are running, and i'll disable them.

i will come back ....

Capt_Caveman · 03-21-2003, 11:48 PM

YOU DEFINITELY, want to turn off either iptables or ipchains. Running them both at the same time screws all kinds of stuff up. Turn them both off untill you get ssh up and working and then only turn one of them back on. Preferably iptables.

Also make sure about that hosts.allow line or tcpwrappers will deny your connections.

>osx
true, true.

YMJ · 03-22-2003, 01:05 AM

YES, The connection now is established.

Thank you Capt_Caveman

Thank you osx

Best Regards

-YMJ

osx · 03-24-2003, 06:19 AM

Glad to help