* Carlos E. R.
On 03/04/2019 05.19, Patrick Shanahan wrote:
* Carlos E. R. <> [04-02-19 22:16]: [...]
So you are scanning your client, from your client. I don't think this gives any information.
Assuming that it is the server which blocks the connection, you have to scan the server from two client locations.
Or scan in both directions, client to server, then server to client. Using one working client and one faulty client.
server to workstation that fails (192.168.1.3 -> 192.168.1.10)
I translated all that to a calc sheet. Attached as csv (";" as separator). Don't complain, it is just 1K ;-)
np
It seems to me that the fault is at the 192.168.1.3 firewall.
that is what I think, but ... I made no firewall changes to the server and iptables -nL shows only ACCEPT for local addrs, 192.168.1.0/24
From the 192.168.1.2 -> 192.168.1.3 case, some closed ports disappear when stopping the "3" firewall, and others appear as open. This is normal.
I would look at the firewall definition files from any occurrence of 192.168.1.10, and /etc/hosts.deny (as Otto Rodusek i6 says).
no appearance of 192.168.1.10, grep -R 192.168.1.10 /etc/sysconfig/* and not in hosts.deny
Another test is a traceroute: compare 192.168.1.2 -> 192.168.1.3 with 192.168.1.10 -> 192.168.1.3, with the server firewall down and up.
from 192.168.1.2 -> 192.168.1.3 firewall active traceroute to 192.168.1.3 (192.168.1.3), 30 hops max, 60 byte packets 1 * * * 2 * * * 3 * * * 4 * * * 5 * * * 6 * * * 7 * * * 8 * * * 9 * * * 10 * * * 11 * * * 12 * * * 13 * * * 14 * * * 15 * * * 16 * * * 17 * * * 18 * * * 19 * * * 20 * * * 21 * * * 22 * * * 23 * * * 24 * * * 25 * * * 26 * * * 27 * * * 28 * * * 29 * * * 30 * * * from 192.168.1.2 -> 192.168.1.3 firewall inactive traceroute to 192.168.1.3 (192.168.1.3), 30 hops max, 60 byte packets 1 wahoo.wahoo.no-ip.org (192.168.1.3) 2.159 ms 2.125 ms 2.106 ms from 192.168.1.10 -> 192.168.1.3 firewall active traceroute 192.168.1.3 traceroute to 192.168.1.3 (192.168.1.3), 30 hops max, 60 byte packets 1 * * * 2 * * * 3 * * * 4 * * * 5 * * * 6 * * * 7 * * * 8 * * * 9 * * * 10 * * * 11 * * * 12 * * * 13 * * * 14 * * * 15 * * * 16 * * * 17 * * * 18 * * * 19 * * * 20 * * * 21 * * * 22 * * * 23 * * * 24 * * * 25 * * * 26 * * * 27 * * * 28 * * * 29 * * * 30 * * * from 192.168.1.10 -> 192.168.1.3 firewall inactive traceroute 192.168.1.3 traceroute to 192.168.1.3 (192.168.1.3), 30 hops max, 60 byte packets 1 wahoo.wahoo.no-ip.org (192.168.1.3) 0.581 ms 0.527 ms 0.499 ms -- (paka)Patrick Shanahan Plainfield, Indiana, USA @ptilopteri http://en.opensuse.org openSUSE Community Member facebook/ptilopteri Registered Linux User #207535 @ http://linuxcounter.net Photos: http://wahoo.no-ip.org/piwigo paka @ IRCnet freenode -- To unsubscribe, e-mail: opensuse-support+unsubscribe@opensuse.org To contact the owner, e-mail: opensuse-support+owner@opensuse.org