My Centos 4.1 only accept connections from localhost, my file conf is default. error: ssh: connect to host 192.168.1.78 port 22: No route to host
thanks
On Tue, 25 Oct 2005, Mauricio Merlin wrote:
My Centos 4.1 only accept connections from localhost, my file conf is default.
error: ssh: connect to host 192.168.1.78 port 22: No route to host
I can't recall if RHEL/CentOS compiles OpenSSH against libwrap, but my gut tells me that your /etc/hosts.{allow,deny} files need tweaking.
On 10/25/05, Mauricio Merlin mauricio@cimed.ind.br wrote:
My Centos 4.1 only accept connections from localhost, my file conf is default. error: ssh: connect to host 192.168.1.78 port 22: No route to host
Have you checked your iptables rules?
-- Jim Perrin System Administrator - UIT Ft Gordon & US Army Signal Center
Based on your question, I'll consider that you're pretty much using a standard iptables config.
edit /etc/sysconfig/iptables
Add the following line, somewhere in the middle - it allows inbound connections to TCP port 22:
-A RH-Firewall-1-INPUT -p tcp --dport 22 -j ACCEPT
If you want to restrict access to a single IP address try this, - it allows inbound connections to port 22 from ip address 1.2.3.4:
-A RH-Firewall-1-INPUT -p tcp -s 1.2.3.4/32 --dport 22 -j ACCEPT
Then restart iptables /etc/rc.d/init.d/iptables restart;
Cheers! -Ben
On Tuesday 25 October 2005 09:54, Mauricio Merlin wrote:
My Centos 4.1 only accept connections from localhost, my file conf is default. error: ssh: connect to host 192.168.1.78 port 22: No route to host
thanks _______________________________________________ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
On Tuesday 25 October 2005 09:54, Mauricio Merlin wrote:
My Centos 4.1 only accept connections from localhost, my file conf is default. error: ssh: connect to host 192.168.1.78 port 22: No route to host
On Oct 25, 2005, at 1:54 PM, Benjamin Smith wrote:
Based on your question, I'll consider that you're pretty much using a standard iptables config.
edit /etc/sysconfig/iptables
Add the following line, somewhere in the middle - it allows inbound connections to TCP port 22:
-A RH-Firewall-1-INPUT -p tcp --dport 22 -j ACCEPT
If you want to restrict access to a single IP address try this, - it allows inbound connections to port 22 from ip address 1.2.3.4:
-A RH-Firewall-1-INPUT -p tcp -s 1.2.3.4/32 --dport 22 -j ACCEPT
Then restart iptables /etc/rc.d/init.d/iptables restart;
Cheers! -Ben
Or you could run /usr/bin/system-config-securitylevel for a GUI.
But -- if it turns out that you do not have firewall enabled, have you considered the possibility that you really don't have a route to the host? That's a network configuration issue on your client, not the ssh server.
Tony
-
Benjamin Smith -
Jim Perrin -
Mauricio Merlin -
Paul Heinlein -
Tony Schreiner