Unable to ssh nodes with global IP
Reindl Harald
h.reindl at thelounge.net
Tue Oct 25 12:34:44 UTC 2011
Am 25.10.2011 14:28, schrieb Abu Attar Musharih:
> On Sat, Oct 22, 2011 at 7:12 PM, Andras Simon <szajmi at gmail.com> wrote:
>
>> Can you ping the machine? If yes, then are there traces in the logs
>> that show the connection attempts? (You can make iptables log those.)
>
> Above is another important point. I can not ping the machine.
> I am wondering how they do that. What port do they close?
ping has no port nor is it TCP
ping is ICMP Type 8
as log you machine does not accept this it can not be pinged
so it is not sure if the ISP, some router or the machine himself
does not accept ICMP
this are the last two lines of all my firewalls
the first does accept ping and the second reject all
ports not explicitly opened
iptables -A INPUT -p icmp --icmp-type 8 -j ACCEPT
iptables -A INPUT -j REJECT
-------------- next part --------------
A non-text attachment was scrubbed...
Name: signature.asc
Type: application/pgp-signature
Size: 262 bytes
Desc: OpenPGP digital signature
Url : http://lists.fedoraproject.org/pipermail/users/attachments/20111025/959f37a5/attachment.bin
More information about the users
mailing list