On Fri, 29 Jul 2022 09:45:30 +0300 Andrei Borzenkov wrote:
On 29.07.2022 09:05, Bob Williams wrote:
Operating system Tumbleweed; desktop KDE Plasma.
I can ssh into my desktop machine from my phone (using JuiceSSH) using the local LAN address 192.168.178.48
When I try to ssh to my ISP static address, I get 'no route to host'.
You try to ssh from where?
I'm using two devices to ssh into my desktop machine, which is running openSUSE TW. Firstly from my Android phone using the JuiceSSH app, and secondly my son in a remote city, who is running Arch.
Show complete command and its full output including subsequent shell prompt. Assuming you are trying it from openSUSE system (which is unclear) show also
Neither system is openSUSE (one Android, one Arch). Only the server I am trying to connect to is running openSUSE. Which is the machine I'm using now to access this list.
ip a ip r ip -6 r
Do you want the result of those commands on the openSUSE ssh server
that I am trying to connect with? If so:
bob@antikythera:~> ip a
1: lo:
This also happens to a colleague trying to connect from another city (ie. from outside my LAN).
I have moved my ssh port to a higher number, no longer 22. This is set in /etc/ssh/sshd_config and /etc/services. The port is forwarded to this machine in my router (Fritz!Box 7530).
The higher port is opened in firewalld with protocol TCP.
I get the same 'no route to host' if I disable the firewall.
I am not convinced the port is really open to the world, although ssh within the LAN is working.
Nmap scan report for aaa-bbb-ccc-ddd.dsl.in-addr.zen.co.uk (aaa.bbb.ccc.ddd) Host is up (0.0060s latency). Not shown: 995 filtered tcp ports (no-response) PORT STATE SERVICE 113/tcp closed ident 873/tcp open rsync 1080/tcp closed socks 5060/tcp open sip 8089/tcp open unknown
When I visit https://www.whatsmyip.org/port-scanner/ and ask it to scan my ssh port number it times out, whereas for comparison it confirms 873 immediately.
SSH from elsewhere into this machine used to work (running Leap, but I doubt that makes a difference).
Have I forgotten a setting somewhere? Are there other tests to run?
Bob
Regards Bob -- Bob Williams No HTML please. Plain text preferred. https://useplaintext.email/