From owner-freebsd-questions@FreeBSD.ORG Wed Nov 9 14:51:31 2005 Return-Path: X-Original-To: freebsd-questions@freebsd.org Delivered-To: freebsd-questions@freebsd.org Received: from mx1.FreeBSD.org (mx1.freebsd.org [216.136.204.125]) by hub.freebsd.org (Postfix) with ESMTP id 8EBB416A424 for ; Wed, 9 Nov 2005 14:51:31 +0000 (GMT) (envelope-from lonnie@outstep.com) Received: from mail.outstep.com (www.outstep.com [205.177.73.241]) by mx1.FreeBSD.org (Postfix) with ESMTP id C529543D6A for ; Wed, 9 Nov 2005 14:51:30 +0000 (GMT) (envelope-from lonnie@outstep.com) Received: (qmail 16668 invoked by uid 509); 9 Nov 2005 06:52:42 -0800 Received: from 70.120.87.170 by GeneralC.outstep.com (envelope-from , uid 507) with qmail-scanner-1.25-st-qms (clamdscan: 0.83/1166. spamassassin: 3.0.2. perlscan: 1.25-st-qms. Clear:RC:0(70.120.87.170):SA:0(-2.3/1.0):. Processed in 1.166325 secs); 09 Nov 2005 14:52:42 -0000 X-Spam-Status: No, hits=-2.3 required=1.0 X-Antivirus-MYDOMAIN-Mail-From: lonnie@outstep.com via GeneralC.outstep.com X-Antivirus-MYDOMAIN: 1.25-st-qms (Clear:RC:0(70.120.87.170):SA:0(-2.3/1.0):. Processed in 1.166325 secs Process 16659) Received: from cpe-70-120-87-170.satx.res.rr.com (HELO ?192.168.0.114?) (lonnie@outstep.com@70.120.87.170) by mail.outstep.com with SMTP; 9 Nov 2005 06:52:40 -0800 Message-ID: <43720CE4.5090102@outstep.com> Date: Wed, 09 Nov 2005 08:51:16 -0600 From: Lonnie Cumberland User-Agent: Mozilla Thunderbird 1.0.5 (Windows/20050711) X-Accept-Language: en-us, en MIME-Version: 1.0 To: Steve Bertrand Content-Type: text/plain; charset=ISO-8859-1; format=flowed Content-Transfer-Encoding: 7bit Cc: freebsd-questions@freebsd.org Subject: Re: Any Default Firewall Installed? X-BeenThere: freebsd-questions@freebsd.org X-Mailman-Version: 2.1.5 Precedence: list List-Id: User questions List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Wed, 09 Nov 2005 14:51:31 -0000 Hi All, I ran the nmap and it shows that some filtering is going on for the IP: ---------------------------- Starting nmap 3.77 ( http://www.insecure.org/nmap/ ) at 2005-11-09 14:45 PST Interesting ports on cp.peoplesquest.com (207.226.17.186): PORT STATE SERVICE 22/tcp filtered ssh 23/tcp filtered telnet Nmap run completed -- 1 IP address (1 host up) scanned in 3.039 seconds cp# nmap -sS -P0 -p 22,23 207.226.17.189 Starting nmap 3.77 ( http://www.insecure.org/nmap/ ) at 2005-11-09 14:45 PST Interesting ports on 207.226.17.189: PORT STATE SERVICE 22/tcp open ssh 23/tcp open telnet Nmap run completed -- 1 IP address (1 host up) scanned in 5.037 seconds ---------------------------- So now I need to see about adjusting that filtering in the rules I guess? Is this some firewall thing in FreeBSD that is running by default? Thanks Lonnie Steve Bertrand wrote: >>I have a fresh FreeBSD 4.11 server installed with multiple >>IP's and am wondering if there is some type of default >>firewall running? >> >>The problem is that after logging in, can not telnet to >>either localhost or to one of the IP's, but can telnet to the >>other IP that is assigned to the server. >> >>For this particular project and as needed by some particular >>software that I have installed, I need to be able to telnet >>to all of the IP's and also have SSH installed. >> >>I can only telnet to 1 of the 2 IP's. >> >>How can I fix this? >> >> > >Along with the other suggestions, here's one more (not to fix, but to >test). > >If you have another FBSD box kicking around, install nmap on it: > ># pkg_add -r nmap ># rehash > >...and for each IP address on the affected box, run the following >command: > ># nmap -sS -P0 -p 22,23 your.domain.or.ip.com > ># Note that the -P0 is -P(zero) > >...actually, you can do this on the machine you *think* the services are >running on, but the truth of the matter may be convaluted due to >possible firewall evasion from going localhost to localhost. > >The sockstat trick as someone else mentioned will tell you if the >services are listening (and who, if anyone is connected), and on which >IP. An entry as such: *:23 means the service is listening on all IP's on >the box. > >nmap will allow you to see if the ports that correlate with the service >is accessable from outside the box. > >If both those are true, then you may have a rules problem somewhere. > >HTH, > >Steve > > > >>Thanks, >>Lonnie >> >>_______________________________________________ >>freebsd-questions@freebsd.org mailing list >>http://lists.freebsd.org/mailman/listinfo/freebsd-questions >>To unsubscribe, send any mail to >>"freebsd-questions-unsubscribe@freebsd.org" >> >> >> > > >