Hi Sven, On 2001.09.04 15:11:54 +0100 Sven Michels wrote:
teo@gecadsoftware.com wrote:
hi,
Hi there,
i've a problem with openssh behind a 2.4.x firewall. If i try to connect to the outside, i got no response until setting the -P flag. with -P it works fine. So it seems to be a problem with the nonprivat port. is there a firewall missconfiguration or something i missed? with 2.2.19 all works fine (without -P).
I think the firewall is the one in charge. It considers source ports below 1024 as private [ because for a process to bind in that area it need root privs ] and denies access. yeah but where? how to disable? whatever .. with 2.2.x the problem did not appear .. the logs show no reject/deny ...
Sounds to me like the 2.2.19 firewall allows connections to be made, but the 2.4.x (iptables or ipchains?) is blocking these connections. Strange that you get nothing in the firewall logs. Does the sshd say anything about the connections in /var/log/messages? HTH Maf.
You can alias your ssh to `ssh -P -C' [ isn't that default it SuSE? I had that impression.] nafaik but i can't do that for 30 ppl ;)
Sven --
-- ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~ Maf. King Standby Exhibition Services ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~ "It is easier to do a job right than to explain why you didn't." - Martin Van Buren ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~