Linux - Security This forum is for all security related questions.
Questions, tips, system compromises, firewalls, etc. are all included here. |
Notices |
Welcome to LinuxQuestions.org, a friendly and active Linux Community.
You are currently viewing LQ as a guest. By joining our community you will have the ability to post topics, receive our newsletter, use the advanced search, subscribe to threads and access many other special features. Registration is quick, simple and absolutely free. Join our community today!
Note that registered members see fewer ads, and ContentLink is completely disabled once you log in.
Are you new to LinuxQuestions.org? Visit the following links:
Site Howto |
Site FAQ |
Sitemap |
Register Now
If you have any problems with the registration process or your account login, please contact us. If you need to reset your password, click here.
Having a problem logging in? Please visit this page to clear all LQ-related cookies.
Get a virtual cloud desktop with the Linux distro that you want in less than five minutes with Shells! With over 10 pre-installed distros to choose from, the worry-free installation life is here! Whether you are a digital nomad or just looking for flexibility, Shells can put your Linux machine on the device that you want to use.
Exclusive for LQ members, get up to 45% off per month. Click here for more info.
|
|
01-08-2007, 10:58 AM
|
#1
|
LQ Newbie
Registered: Jan 2007
Posts: 2
Rep:
|
ssh works good from LAN but can't login from WAN
I use Suse SLED 10. SSH works good from LAN, but can't connect from WAN.
hosts.allow and hosts.deny are empty. Port 22 is redirected in my router correctly. I tried another ports (50022..) I looks like Linux ignore packets incoming from WAN. I tried to connect with VNC and there is the same problem - works from LAN but can't connect from WAN. The Linux firewall is turned off.
Has anyone any idea?
|
|
|
01-08-2007, 11:15 AM
|
#2
|
Member
Registered: Mar 2003
Location: North Carolina
Distribution: Gentoo
Posts: 168
Rep:
|
Is there some type of firewall on your router? Or anything that might be cathing it at the router.
You might try tcpdump to see if the traffic is coming through. Another thing (if you're able to) would be to place your box in front of the router temporarily and see if you can connect.
|
|
|
01-08-2007, 11:18 AM
|
#3
|
Member
Registered: Apr 2006
Location: Washington
Distribution: Suse, CentOS, Ubuntu
Posts: 124
Rep:
|
ya, you might need a port forward on your router. I like the idea of putting it before your router and testing it.
|
|
|
01-08-2007, 02:33 PM
|
#4
|
Member
Registered: Jun 2003
Distribution: Fedora 9 64bit, RHEL 4.6
Posts: 96
Rep:
|
How are you testing WAN connectivity? If your router doesn't support loop back you won't be able to test by using the routable IP on a LAN computer.
The best way to test, like the others have stated, would be to simulate a WAN computer or try from an actual remote computer.
Does a port scan show that the ssh port is open?
|
|
|
01-10-2007, 03:03 PM
|
#5
|
LQ Newbie
Registered: Jan 2007
Posts: 2
Original Poster
Rep:
|
OK, this is the problem - My router is Sagem LiveBox. I think it does not support loopback. The connection from real remote computer works good. Thanks ...
|
|
|
All times are GMT -5. The time now is 12:39 AM.
|
LinuxQuestions.org is looking for people interested in writing
Editorials, Articles, Reviews, and more. If you'd like to contribute
content, let us know.
|
Latest Threads
LQ News
|
|