LinuxQuestions.org
Download your favorite Linux distribution at LQ ISO.
Go Back   LinuxQuestions.org > Forums > Linux Forums > Linux - Newbie
User Name
Password
Linux - Newbie This Linux forum is for members that are new to Linux.
Just starting out and have a question? If it is not in the man pages or the how-to's this is the place!

Notices


Reply
  Search this Thread
Old 11-23-2009, 02:29 AM   #1
johnh10000
Member
 
Registered: Nov 2008
Distribution: Ubuntu Lucid Lynx
Posts: 541

Rep: Reputation: 33
idiot firewall (i think) question


Well I'm trying to get nx to work, I thought, check out ssh locally first.
However I get this. the router port is open. I have changed services. What have I forgoten?

Code:
root@tux:/etc# iptables -A INPUT -p tcp --destination-port 92 -j ACCEPT
root@tux:/etc# iptables -A INPUT -p udp --destination-port 92 -j ACCEPT
root@tux:/etc# iptables -A OUTPUT -p tcp --source-port 92 -j ACCEPT
root@tux:/etc# iptables -A OUTPUT -p udp --source-port 92 -j ACCEPT
root@tux:/etc# ssh tux.isa-geek.org
ssh: connect to host tux.isa-geek.org port 92: Connection refused
 
Old 11-23-2009, 05:26 AM   #2
chiragrk
Member
 
Registered: Nov 2009
Location: India
Distribution: Xandros, Ubuntu
Posts: 74

Rep: Reputation: 16
Is there anything configured to listen on port 92? Do a `netstat -antp | grep 92` and see if there's really anything on this port. "connection refused" need not _always_ be because of iptables settings.
 
Old 11-23-2009, 05:33 AM   #3
linuxlover.chaitanya
Senior Member
 
Registered: Apr 2008
Location: Gurgaon, India
Distribution: Cent OS 6/7
Posts: 4,638

Rep: Reputation: Disabled
If you have configured iptables set to accept only the configured connections and the default policy is set to reject, then you will have to explicitly accept the ssh connections.
The other reason could be that ssh service is not running. Start it and see it makes any difference.
Also see if you have tcpwrappers configured to deny or accept the ssh connections.
Look at /etc/hosts.allow and /etc/hosts.deny files.
 
Old 11-23-2009, 05:34 AM   #4
zhjim
Senior Member
 
Registered: Oct 2004
Distribution: Debian Squeeze x86_64
Posts: 1,748
Blog Entries: 11

Rep: Reputation: 233Reputation: 233Reputation: 233
I bet on the two OUTPUT lines. I doubt that your origin will be from the 92 port when you connect to a ssh server on a nother machine.
Also tweakable in the kernel normaly outgoing connections take on a random port between 1024:65535.
Try this one
Code:
root@tux:/etc# iptables -A INPUT -p tcp --destination-port 92 -j ACCEPT
root@tux:/etc# iptables -A INPUT -p udp --destination-port 92 -j ACCEPT
root@tux:/etc# iptables -A OUTPUT -p tcp --destination-port 92 -j ACCEPT
root@tux:/etc# iptables -A OUTPUT -p udp --destination-port 92 -j ACCEPT
If you changed the service in /etc/servicesyou could also go along with
Code:
root@tux:/etc# iptables -A OUTPUT -p udp --destination-port ssh -j ACCEPT
Cheers Zhjim
 
Old 11-23-2009, 06:57 AM   #5
johnh10000
Member
 
Registered: Nov 2008
Distribution: Ubuntu Lucid Lynx
Posts: 541

Original Poster
Rep: Reputation: 33
Embarressed

<Embarressed> Stupid me! My try installing ssh BEFORE trying to connect to it!

Sorry for bothering you all.
 
  


Reply


Thread Tools Search this Thread
Search this Thread:

Advanced Search

Posting Rules
You may not post new threads
You may not post replies
You may not post attachments
You may not edit your posts

BB code is On
Smilies are On
[IMG] code is Off
HTML code is Off



Similar Threads
Thread Thread Starter Forum Replies Last Post
a simple idiot question about floppy drives kpachopoulos General 3 01-18-2005 05:34 AM
Question 1 Firewall Log Question 2 Network Monitor Soulful93 Linux - Networking 4 08-05-2004 12:05 AM
Firewall Question rjneeley Linux - Networking 1 06-17-2004 04:13 AM
extra hard disc's - idiot question! bigjohn Linux - Newbie 14 03-10-2003 11:17 PM
Firewall question. Stingreen Linux - General 1 02-08-2002 06:15 PM

LinuxQuestions.org > Forums > Linux Forums > Linux - Newbie

All times are GMT -5. The time now is 11:36 AM.

Main Menu
Advertisement
My LQ
Write for LQ
LinuxQuestions.org is looking for people interested in writing Editorials, Articles, Reviews, and more. If you'd like to contribute content, let us know.
Main Menu
Syndicate
RSS1  Latest Threads
RSS1  LQ News
Twitter: @linuxquestions
Open Source Consulting | Domain Registration