From owner-freebsd-questions@FreeBSD.ORG Wed Nov 9 13:39:23 2005 Return-Path: X-Original-To: freebsd-questions@freebsd.org Delivered-To: freebsd-questions@freebsd.org Received: from mx1.FreeBSD.org (mx1.freebsd.org [216.136.204.125]) by hub.freebsd.org (Postfix) with ESMTP id 07CAA16A41F for ; Wed, 9 Nov 2005 13:39:23 +0000 (GMT) (envelope-from iaccounts@ibctech.ca) Received: from pearl.ibctech.ca (pearl.ibctech.ca [209.167.58.10]) by mx1.FreeBSD.org (Postfix) with ESMTP id 6107943D49 for ; Wed, 9 Nov 2005 13:39:22 +0000 (GMT) (envelope-from iaccounts@ibctech.ca) Received: (qmail 87172 invoked by uid 1002); 9 Nov 2005 13:39:21 -0000 Received: from iaccounts@ibctech.ca by pearl.ibctech.ca by uid 89 with qmail-scanner-1.22 (spamassassin: 2.64. Clear:RC:1(209.167.16.15):. Processed in 2.928089 secs); 09 Nov 2005 13:39:21 -0000 Received: from unknown (HELO fuze) (209.167.16.15) by pearl.ibctech.ca with SMTP; 9 Nov 2005 13:39:17 -0000 From: "Steve Bertrand" To: "'Lonnie Cumberland'" , Date: Wed, 9 Nov 2005 08:39:18 -0500 MIME-Version: 1.0 Content-Type: text/plain; charset="us-ascii" Content-Transfer-Encoding: 7bit X-Mailer: Microsoft Office Outlook, Build 11.0.5510 X-MimeOLE: Produced By Microsoft MimeOLE V6.00.2800.1441 In-Reply-To: <437144EC.9060604@outstep.com> Thread-Index: AcXkxfbJkh3Ua99rRE2ykErBJi9hcAAa0g4w X-Qmail-Scanner-Message-ID: <113154355867587151@pearl.ibctech.ca> Message-Id: <20051109133922.6107943D49@mx1.FreeBSD.org> Cc: Subject: RE: Any Default Firewall Installed? X-BeenThere: freebsd-questions@freebsd.org X-Mailman-Version: 2.1.5 Precedence: list List-Id: User questions List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Wed, 09 Nov 2005 13:39:23 -0000 > I have a fresh FreeBSD 4.11 server installed with multiple > IP's and am wondering if there is some type of default > firewall running? > > The problem is that after logging in, can not telnet to > either localhost or to one of the IP's, but can telnet to the > other IP that is assigned to the server. > > For this particular project and as needed by some particular > software that I have installed, I need to be able to telnet > to all of the IP's and also have SSH installed. > > I can only telnet to 1 of the 2 IP's. > > How can I fix this? Along with the other suggestions, here's one more (not to fix, but to test). If you have another FBSD box kicking around, install nmap on it: # pkg_add -r nmap # rehash ...and for each IP address on the affected box, run the following command: # nmap -sS -P0 -p 22,23 your.domain.or.ip.com # Note that the -P0 is -P(zero) ...actually, you can do this on the machine you *think* the services are running on, but the truth of the matter may be convaluted due to possible firewall evasion from going localhost to localhost. The sockstat trick as someone else mentioned will tell you if the services are listening (and who, if anyone is connected), and on which IP. An entry as such: *:23 means the service is listening on all IP's on the box. nmap will allow you to see if the ports that correlate with the service is accessable from outside the box. If both those are true, then you may have a rules problem somewhere. HTH, Steve > > Thanks, > Lonnie > > _______________________________________________ > freebsd-questions@freebsd.org mailing list > http://lists.freebsd.org/mailman/listinfo/freebsd-questions > To unsubscribe, send any mail to > "freebsd-questions-unsubscribe@freebsd.org" >