From owner-freebsd-questions  Wed Dec  6  6: 4:30 2000
From owner-freebsd-questions@FreeBSD.ORG  Wed Dec  6 06:04:26 2000
Return-Path: <owner-freebsd-questions@FreeBSD.ORG>
Delivered-To: freebsd-questions@freebsd.org
Received: from d9168.upc-d.chello.nl (d9168.upc-d.chello.nl [213.46.9.168])
	by hub.freebsd.org (Postfix) with ESMTP id 7E52337B402
	for <freebsd-questions@freebsd.org>; Wed,  6 Dec 2000 06:04:26 -0800 (PST)
Received: by d9168.upc-d.chello.nl (Postfix, from userid 1001)
	id 23077313; Wed,  6 Dec 2000 15:04:18 +0100 (CET)
Date: Wed, 6 Dec 2000 15:04:18 +0100
From: Edwin Groothuis <mavetju@chello.nl>
To: Jim Freeze <jim@freeze.org>
Cc: freebsd-questions@freebsd.org
Subject: Re: Can no longer ssh
Message-ID: <20001206150418.B32018@d9168.upc-d.chello.nl>
Mail-Followup-To: Edwin Groothuis <mavetju@chello.nl>,
	Jim Freeze <jim@freeze.org>, freebsd-questions@freebsd.org
References: <Pine.BSF.4.21.0012051930020.13396-100000@www.bellnetworks.net> <Pine.BSF.4.21.0012052200500.14802-100000@www.bellnetworks.net>
Mime-Version: 1.0
Content-Type: text/plain; charset=us-ascii
Content-Disposition: inline
User-Agent: Mutt/1.2.5i
In-Reply-To: <Pine.BSF.4.21.0012052200500.14802-100000@www.bellnetworks.net>; from jim@freeze.org on Tue, Dec 05, 2000 at 10:16:06PM -0500
Sender: edwin@d9168.upc-d.chello.nl
Sender: owner-freebsd-questions@FreeBSD.ORG
Precedence: bulk
X-Loop: FreeBSD.ORG

On Tue, Dec 05, 2000 at 10:16:06PM -0500, Jim Freeze wrote:
> As I keep working on this issue, I keep inching forward. The ssh login
> 'su' garbage below was my mistake. In setting up the LAN I changed the
> name of my gateway. That is now fixed.
> 
> I verfied ssh was working by removing all the firewall rules with
> 
> # ipfw -f flush
> 
> Reading some of the postings on mailing list suggestd that divert should
> come after the firewall rules.
> 
> My rules started out with 
> 
> 00100 0   0 divert 8668 ip from any to any via vx0
> 00150 0   0 allow ip from any to any via lo0
> ...
> 
> If I remove 100

I'm interested in the other lines.
Also, put a "log" statement on lines which you see which rules are
denying everything.

Edwin

-- 
Edwin Groothuis   | Fatal Dimensions:
mavetju@chello.nl | http://fataldimensions.nl.eu.org/
------------------+ telnet://fataldimensions.nl.eu.org:4000
Trenton@FinalFantasy: y r all fucken coders wierd and negative except me?


To Unsubscribe: send mail to majordomo@FreeBSD.org
with "unsubscribe freebsd-questions" in the body of the message