Date: Wed, 6 Dec 2000 00:10:59 -0800 From: "Crist J . Clark" <cjclark@reflexnet.net> To: Jim Freeze <jim@freeze.org> Cc: questions@FreeBSD.ORG Subject: Re: Can no longer ssh Message-ID: <20001206001059.G99903@149.211.6.64.reflexcom.com> In-Reply-To: <Pine.BSF.4.21.0012052200500.14802-100000@www.bellnetworks.net>; from jim@freeze.org on Tue, Dec 05, 2000 at 10:16:06PM -0500 References: <Pine.BSF.4.21.0012051930020.13396-100000@www.bellnetworks.net> <Pine.BSF.4.21.0012052200500.14802-100000@www.bellnetworks.net>
next in thread | previous in thread | raw e-mail | index | archive | help
On Tue, Dec 05, 2000 at 10:16:06PM -0500, Jim Freeze wrote: > As I keep working on this issue, I keep inching forward. The ssh login > 'su' garbage below was my mistake. In setting up the LAN I changed the > name of my gateway. That is now fixed. > > I verfied ssh was working by removing all the firewall rules with > > # ipfw -f flush > > Reading some of the postings on mailing list suggestd that divert should > come after the firewall rules. > > My rules started out with > > 00100 0 0 divert 8668 ip from any to any via vx0 > 00150 0 0 allow ip from any to any via lo0 > ... > > If I remove 100 > > then ssh works, but of course I have killed my lan. I tried moving divert > toward the end, but have not been sucessfull. > > Can someone shed some light on this for me? Could you tell us again what does and does not work? In your last mail, you were ssh'ing to localhost and getting messages from sshd about attempts to login as root? So, does, $ ssh -v -l joeuser localhost Work sometimes? -- Crist J. Clark cjclark@alum.mit.edu To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-questions" in the body of the message
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?20001206001059.G99903>