Linux - NewbieThis Linux forum is for members that are new to Linux.
Just starting out and have a question?
If it is not in the man pages or the how-to's this is the place!
Notices
Welcome to LinuxQuestions.org, a friendly and active Linux Community.
You are currently viewing LQ as a guest. By joining our community you will have the ability to post topics, receive our newsletter, use the advanced search, subscribe to threads and access many other special features. Registration is quick, simple and absolutely free. Join our community today!
Note that registered members see fewer ads, and ContentLink is completely disabled once you log in.
If you have any problems with the registration process or your account login, please contact us. If you need to reset your password, click here.
Having a problem logging in? Please visit this page to clear all LQ-related cookies.
Get a virtual cloud desktop with the Linux distro that you want in less than five minutes with Shells! With over 10 pre-installed distros to choose from, the worry-free installation life is here! Whether you are a digital nomad or just looking for flexibility, Shells can put your Linux machine on the device that you want to use.
Exclusive for LQ members, get up to 45% off per month. Click here for more info.
I have an online server which I can not reach any more !
Code:
[jonas@jonas ~]$ ssh -2 -p 2273 ip_of_server
normally works just fine but now there is a timeout...
Code:
-bash-3.2# /sbin/service iptables stop
Flushing firewall rules: [ OK ]
Setting chains to policy ACCEPT: mangle filter [ OK ]
Unloading iptables modules: Removing netfilter NETLINK layer.
[ OK ]
-bash-3.2# /sbin/service csf status
Status of csf:csf and lfd have been disabled, use 'csf -e' to enable
-bash-3.2# /sbin/service lfd status
Status of lfd:lfd is stopped
The only thing I have is a management-interface with a command prompt (luckily !!)
You can see that any firewall is disabled.
Still I can not reach my server. Not through webmin via the public address, not through the VPN on the private address (10.10.0.1). So no webmin.
I cannot reach my server via ssh.
I cannot ping my server on the public IP-address from my client.
The only thing I can do is post this problem here :-).
What else besides the firewall can restrict my access to my server ???
Last edited by jonaskellens; 09-03-2009 at 01:23 PM.
I have an online server which I can not reach any more !
Code:
[jonas@jonas ~]$ ssh -2 -p 2273 ip_of_server
normally works just fine but now there is a timeout...
Code:
-bash-3.2# /sbin/service iptables stop
Flushing firewall rules: [ OK ]
Setting chains to policy ACCEPT: mangle filter [ OK ]
Unloading iptables modules: Removing netfilter NETLINK layer.
[ OK ]
-bash-3.2# /sbin/service csf status
Status of csf:csf and lfd have been disabled, use 'csf -e' to enable
-bash-3.2# /sbin/service lfd status
Status of lfd:lfd is stopped
The only thing I have is a management-interface with a command prompt (luckily !!)
You can see that any firewall is disabled.
Still I can not reach my server. Not through webmin via the public address, not through the VPN on the private address (10.10.0.1). So no webmin.
I cannot reach my server via ssh.
I cannot ping my server on the public IP-address from my client.
The only thing I can do is post this problem here :-).
What else besides the firewall can restrict my access to my server ???
which is normal cause I only accept connection of my host with RSA-key.
i trust you have done all the normal troubleshooting...ping/traceroute etc...and ssh -vv
it doesnt look like the ssh traffic is actually reaching the server.
anything in the logs /var/log/secure and /var/log/messages that give a clue?
i trust you have done all the normal troubleshooting...ping/traceroute etc...and ssh -vv
it doesnt look like the ssh traffic is actually reaching the server.
anything in the logs /var/log/secure and /var/log/messages that give a clue?
Ping from my client to the server : 100% packet loss
Ping from server to client : 100%packet loss
Traceroute is not installed on server...
Traceroute from my client to server show the network of my ISP and then ****, so not that much info here...
/var/log/secure shows entries of 5hours ago, no new entries...
/var/log/messages :
Code:
Sep 3 17:28:42 vps2301 openvpn[13967]: UDPv4 link local (bound): [undef]:1194
Sep 3 17:28:42 vps2301 openvpn[13967]: UDPv4 link remote: [undef]
Sep 3 20:15:16 vps2301 kernel: Removing netfilter NETLINK layer.
Ping from my client to the server : 100% packet loss
Ping from server to client : 100%packet loss
Traceroute is not installed on server...
Traceroute from my client to server show the network of my ISP and then ****, so not that much info here...
/var/log/secure shows entries of 5hours ago, no new entries...
/var/log/messages :
Code:
Sep 3 17:28:42 vps2301 openvpn[13967]: UDPv4 link local (bound): [undef]:1194
Sep 3 17:28:42 vps2301 openvpn[13967]: UDPv4 link remote: [undef]
Sep 3 20:15:16 vps2301 kernel: Removing netfilter NETLINK layer.
That's it...
i suspect network problems somewhere in between.
if you dont have traceroute you could always try tracepath, tcptraceroute or even mtr if it is installed.
You can also try traceroute from traceroute.org if you have a GUI web browser installed
i suspect network problems somewhere in between.
if you dont have traceroute you could always try tracepath, tcptraceroute or even mtr if it is installed.
You can also try traceroute from traceroute.org if you have a GUI web browser installed
The only thing that is installed on the server is :
Ok. I haven't seen this asked yet. Can you telnet to the server on port 22? Or port 2273 where it looks like the sshd is set to listen to. And, if so, what do you get as a response? If the ssh daemon is running and responding correctly, you should at least get back an identifier saying the version of ssh the server is running.
Ok. I haven't seen this asked yet. Can you telnet to the server on port 22? Or port 2273 where it looks like the sshd is set to listen to. And, if so, what do you get as a response? If the ssh daemon is running and responding correctly, you should at least get back an identifier saying the version of ssh the server is running.
From my home network to the server :
Code:
[jonas@jonas ~]$ telnet ip_server 2273
Trying ip_server...
telnet: connect to address ip_server: Connection timed out
[jonas@jonas ~]$ ssh -2 -p 2273 ip_server -vv
OpenSSH_5.1p1, OpenSSL 0.9.8g 19 Oct 2007
debug1: Reading configuration data /etc/ssh/ssh_config
debug1: Applying options for *
debug2: ssh_connect: needpriv 0
debug1: Connecting to ip_server [ip_server] port 2273.
debug1: connect to address ip_server port 2273: Connection timed out
ssh: connect to host ip_server port 2273: Connection timed out
From my server to my home network :
Code:
terminal coming up, please press Return/Enter to get a prompt!
-bash-3.2# ping -c 4 yocan.no-ip.biz
PING yocan.no-ip.biz (78.22.164.184) 56(84) bytes of data.
--- yocan.no-ip.biz ping statistics ---
4 packets transmitted, 0 received, 100% packet loss, time 3008ms
-bash-3.2# telnet yocan.no-ip.biz 22
Trying 78.22.164.184...
telnet: connect to address 78.22.164.184: Connection timed out
Strange thing : through an interface I can still see the console of my VDS. Even when my firewall was still up and running I could always consult this terminal-window.
LinuxQuestions.org is looking for people interested in writing
Editorials, Articles, Reviews, and more. If you'd like to contribute
content, let us know.