From owner-freebsd-questions@FreeBSD.ORG Fri Jun 25 06:30:59 2004 Return-Path: Delivered-To: freebsd-questions@freebsd.org Received: from mx1.FreeBSD.org (mx1.freebsd.org [216.136.204.125]) by hub.freebsd.org (Postfix) with ESMTP id D2C3E16A4CE for ; Fri, 25 Jun 2004 06:30:59 +0000 (GMT) Received: from ms-smtp-01.rdc-kc.rr.com (ms-smtp-01.rdc-kc.rr.com [24.94.166.115]) by mx1.FreeBSD.org (Postfix) with ESMTP id 5753C43D64 for ; Fri, 25 Jun 2004 06:30:59 +0000 (GMT) (envelope-from mcabanatuan@wi.rr.com) Received: from [192.168.0.3] (CPE-65-31-156-223.wi.rr.com [65.31.156.223]) i5P6TLBm003324 for ; Fri, 25 Jun 2004 01:29:22 -0500 (CDT) Message-ID: <40DBC641.9080408@wi.rr.com> Date: Fri, 25 Jun 2004 01:29:21 -0500 From: Marc Cabanatuan User-Agent: Mozilla Thunderbird 0.6 (X11/20040508) X-Accept-Language: en-us, en MIME-Version: 1.0 To: freebsd-questions@freebsd.org X-Enigmail-Version: 0.83.6.0 X-Enigmail-Supports: pgp-inline, pgp-mime Content-Type: text/plain; charset=ISO-8859-1; format=flowed Content-Transfer-Encoding: 7bit X-Virus-Scanned: Symantec AntiVirus Scan Engine Subject: sshd problem(s) X-BeenThere: freebsd-questions@freebsd.org X-Mailman-Version: 2.1.1 Precedence: list Reply-To: Marc Cabanatuan List-Id: User questions List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Fri, 25 Jun 2004 06:30:59 -0000 -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 Alright, I've been at this all day and searching all over the place and have been unable to find an acceptable answer for this. Whenever ssh'ing to or from my fbsd box i receive the following error: ssh_exchange_identification: Connection closed by remote host === So in light of this, I did some research as far as my use of pf, portsentry, and hosts.allow/deny go. I double and triple checked, including using tcpdmatch and there are no rules for block of ssh(d) traffic on port 22. /var/log/auth.log only shows this: Jun 24 14:06:57 atari sshd[47710]: refused connect from nintendo (192.168.0.3), or whereever else ssh connections are coming from. uname -a: FreeBSD atari.hwnet.ath.cx 5.1-RELEASE-p17 FreeBSD 5.1-RELEASE-p17 #5: Fri Jun 11 10:01:20 CDT 2004 root@atari.hwnet.ath.cx:/usr/obj/usr/src/sys/ATARI i386 ssh -V: OpenSSH_3.6.1p1 FreeBSD-20030924, SSH protocols 1.5/2.0, OpenSSL 0x0090701f pfctl -sr: scrub in all fragment reassemble pass out all pass quick on lo0 all block drop in log all pass in on sis0 inet6 proto tcp from any to fe80::230:95ff:fe00:8be4 port = ssh pass in on sis0 inet proto tcp from any to 192.168.0.4 port = ssh pass in on sis0 inet proto tcp from any to 192.168.7.34 port = ssh pass out on sis0 proto tcp all keep state pass out on sis0 proto udp all keep state pass in on sis0 proto tcp from any to port = http keep state pass in on sis0 proto udp from any to port = http keep state pass in on sis0 proto tcp from any to port = 3292 keep state block drop in on sis0 inet proto tcp from 66.159.250.0/24 to any block drop in on sis0 inet proto udp from 66.159.250.0/24 to any pass in on sis0 proto tcp from any to port = https pass in on sis0 inet proto tcp from 192.168.0.0/24 to any pass in on sis0 inet proto udp from 192.168.0.0/24 to any if there is any other info i can provide please let me know. i apologize for the lengthy outputs, but i figured it would be best for assistance in fixing this problem. the only change that im aware of as far as the network goes is i had the modem replaced today, but that did not affect internal network activity whatsoever. Thanks, Marc - -- Marc Cabanatuan Network and Systems Administrator A+, Net+, Linux+, CCNA, MCP -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.2.4 (GNU/Linux) Comment: Using GnuPG with Thunderbird - http://enigmail.mozdev.org iD8DBQFA28ZAQXmDWC9ByjIRAuS1AJ942op9+vBWbhJLmkJC0GImhk3ddQCgtr63 /eG3UJu7QU9xJbXHTN7NB48= =PX0D -----END PGP SIGNATURE-----