teo@gecadsoftware.com wrote: hi,
Hi there,
i've a problem with openssh behind a 2.4.x firewall. If i try to connect to the outside, i got no response until setting the -P flag. with -P it works fine. So it seems to be a problem with the nonprivat port. is there a firewall missconfiguration or something i missed? with 2.2.19 all works fine (without -P).
I think the firewall is the one in charge. It considers source ports below 1024 as private [ because for a process to bind in that area it need root privs ] and denies access. yeah but where? how to disable? whatever .. with 2.2.x the problem did not appear .. the logs show no reject/deny ...
You can alias your ssh to `ssh -P -C' [ isn't that default it SuSE? I had that impression.] nafaik but i can't do that for 30 ppl ;)
Sven -- intraDAT AG http://www.intradat.com Wilhelm-Leuschner-Strasse 7 Tel: +49 69-25629-0 D - 60329 Frankfurt am Main Fax: +49 69-25629-256