Ok. I managed to *briefly* connect with my machine from outside. I still think there's something "hinky" about my config since I installed F10. It *was* working on FC6, and I wiped and reinstalled F10. Now, I can SSH in from my wife's XP box on the LAN, but I can't SSH in from outside, either on port 22 or the non-standard port I configured to make things more difficult for hackers (port number is in excess of 2000).
I can SSH in from inside the LAN on either the standard port or the non-standard port, but I cannot access my machine from outside.
I've tried several things, but none of them seem to work. Any suggestions where to look?
John Aldrich wrote:
Ok. I managed to *briefly* connect with my machine from outside. I still think there's something "hinky" about my config since I installed F10. It *was* working on FC6, and I wiped and reinstalled F10. Now, I can SSH in from my wife's XP box on the LAN, but I can't SSH in from outside, either on port 22 or the non-standard port I configured to make things more difficult for hackers (port number is in excess of 2000).
I can SSH in from inside the LAN on either the standard port or the non-standard port, but I cannot access my machine from outside.
I've tried several things, but none of them seem to work. Any suggestions where to look?
Got a router in the mix there? If you changed the port that ssh answers on you'll need to set the router to port forward incoming port 22 connections to your non-standard port.
On Tuesday 06 January 2009, Stephen Berg (Contractor) wrote:
John Aldrich wrote:
Ok. I managed to *briefly* connect with my machine from outside. I still think there's something "hinky" about my config since I installed F10. It *was* working on FC6, and I wiped and reinstalled F10. Now, I can SSH in from my wife's XP box on the LAN, but I can't SSH in from outside, either on port 22 or the non-standard port I configured to make things more difficult for hackers (port number is in excess of 2000).
I can SSH in from inside the LAN on either the standard port or the non-standard port, but I cannot access my machine from outside.
I've tried several things, but none of them seem to work. Any suggestions where to look?
Got a router in the mix there? If you changed the port that ssh answers on you'll need to set the router to port forward incoming port 22 connections to your non-standard port.
Yup. I got a Netgear ISDN router. I had it set to forward *only* the non- standard port, but for some reason that doesn't appear to be working. However, I got into the router and re-enabled the port 22 forward and it's working now. I don't like having that port enabled though, so I'm going to have to play with it and see if I can't get the non-standard port working again... funny thing, it *was* working in FC6. I think I'll back up the current sshd_config and copy the one from FC6 in and see if that makes a difference.
John Aldrich wrote:
On Tuesday 06 January 2009, Stephen Berg (Contractor) wrote:
John Aldrich wrote:
Ok. I managed to *briefly* connect with my machine from outside. I still think there's something "hinky" about my config since I installed F10. It *was* working on FC6, and I wiped and reinstalled F10. Now, I can SSH in from my wife's XP box on the LAN, but I can't SSH in from outside, either on port 22 or the non-standard port I configured to make things more difficult for hackers (port number is in excess of 2000).
I can SSH in from inside the LAN on either the standard port or the non-standard port, but I cannot access my machine from outside.
I've tried several things, but none of them seem to work. Any suggestions where to look?
Got a router in the mix there? If you changed the port that ssh answers on you'll need to set the router to port forward incoming port 22 connections to your non-standard port.
Yup. I got a Netgear ISDN router. I had it set to forward *only* the non- standard port, but for some reason that doesn't appear to be working. However, I got into the router and re-enabled the port 22 forward and it's working now. I don't like having that port enabled though, so I'm going to have to play with it and see if I can't get the non-standard port working again... funny thing, it *was* working in FC6. I think I'll back up the current sshd_config and copy the one from FC6 in and see if that makes a difference.
You have to have your router on "Port Forwarding" to get to your PC from the outside. Your router is acting like a Firewall. If your on a local network, then no, you can ssh from box to box on that local network. What are you trying to do ??
On Tue, Jan 06, 2009 at 09:22:25AM -0500, John Aldrich wrote:
I can SSH in from inside the LAN on either the standard port or the non-standard port, but I cannot access my machine from outside.
This sounds like a port forwarding issue. If you're using iptables, check your rules. If you're using an external firewall, check its configuration.
G'luck, -- Dave Ihnat dihnat@dminet.com
John Aldrich wrote:
Ok. I managed to *briefly* connect with my machine from outside. I still think there's something "hinky" about my config since I installed F10. It *was* working on FC6, and I wiped and reinstalled F10. Now, I can SSH in from my wife's XP box on the LAN, but I can't SSH in from outside, either on port 22 or the non-standard port I configured to make things more difficult for hackers (port number is in excess of 2000).
I can SSH in from inside the LAN on either the standard port or the non-standard port, but I cannot access my machine from outside.
I've tried several things, but none of them seem to work. Any suggestions where to look?
Dumb question - did the IP address of hte machine change? If so, check the forwarding rules on your firewall - you may be trying to connect to the wrong machine.
Mikkel
On Tue, 2009-01-06 at 09:22 -0500, John Aldrich wrote:
Ok. I managed to *briefly* connect with my machine from outside. I still think there's something "hinky" about my config since I installed F10. It *was* working on FC6, and I wiped and reinstalled F10. Now, I can SSH in from my wife's XP box on the LAN, but I can't SSH in from outside, either on port 22 or the non-standard port I configured to make things more difficult for hackers (port number is in excess of 2000).
I can SSH in from inside the LAN on either the standard port or the non-standard port, but I cannot access my machine from outside.
I've tried several things, but none of them seem to work. Any suggestions where to look?
Sounds like a hosts-allow, hosts-deny problem -- ======================================================================= Immature poets imitate, mature poets steal. -- T.S. Eliot, "Philip Massinger" ======================================================================= Aaron Konstam telephone: (210) 656-0355 e-mail: akonstam@sbcglobal.net