From owner-freebsd-questions@FreeBSD.ORG Fri Feb 27 14:52:12 2004 Return-Path: Delivered-To: freebsd-questions@freebsd.org Received: from mx1.FreeBSD.org (mx1.freebsd.org [216.136.204.125]) by hub.freebsd.org (Postfix) with ESMTP id BD74916A4CE for ; Fri, 27 Feb 2004 14:52:12 -0800 (PST) Received: from mx1.heronetwork.com (mail.heronetwork.com [216.254.62.176]) by mx1.FreeBSD.org (Postfix) with ESMTP id 9081043D1D for ; Fri, 27 Feb 2004 14:52:12 -0800 (PST) (envelope-from sandshrimp@comcast.net) Received: by mx1.heronetwork.com (Postfix, from userid 1003) id 16754A6A0F; Fri, 27 Feb 2004 14:52:12 -0800 (PST) Received: from comcast.net (c-24-19-3-98.client.comcast.net [24.19.3.98]) (using TLSv1 with cipher DHE-RSA-AES256-SHA (256/256 bits)) (No client certificate requested) by mx1.heronetwork.com (Postfix) with ESMTP id 5387BA4B28; Fri, 27 Feb 2004 14:52:08 -0800 (PST) Message-ID: <403FCA17.1020207@comcast.net> Date: Fri, 27 Feb 2004 14:52:07 -0800 From: Ryan Merrick User-Agent: Mozilla/5.0 (X11; U; FreeBSD i386; en-US; rv:1.5) Gecko/20031218 X-Accept-Language: en-us, en MIME-Version: 1.0 To: Gary Kline References: <20040227042523.GA7089@tao.thought.org> In-Reply-To: <20040227042523.GA7089@tao.thought.org> Content-Type: text/plain; charset=us-ascii; format=flowed Content-Transfer-Encoding: 7bit X-Spam-Level: X-Spam-Checker-Version: SpamAssassin 2.63 (2004-01-11) on nott.heronetwork.com X-Spam-Status: No, hits=0.1 required=8.0 tests=AWL,TW_PF autolearn=no version=2.63 cc: FreeBSD Mailing List Subject: Re: can't ssh back into 10.242; host seen as Down X-BeenThere: freebsd-questions@freebsd.org X-Mailman-Version: 2.1.1 Precedence: list List-Id: User questions List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Fri, 27 Feb 2004 22:52:12 -0000 Gary Kline wrote: > 5.2-RELEASE is coming around. From the KVM connection > to 10.242 I can telnet and ssh *out* to other places. > (I can fetch ports and upgrade things... .) But I can't > figure out why I can't ssh or telnet *in*. ping sees my > new system as down:: > > pu 19:55 [5212] ping 10.242 > PING 10.242 (10.0.0.242): 56 data bytes > ping: sendto: Host is down > ping: sendto: Host is down > ping: sendto: Host is down > ^Csendto: Host is down > > --- 10.242 ping statistics --- > 10 packets transmitted, 0 packets received, 100% packet loss > pu 19:55 [5213] > > > To show what's going on, I switched over to 10.242, ssh'd > into 10.1 and did ping and ssh -vvv . Below is a typescript > out these cmds: > > Script started on Thu Feb 26 20:05:27 2004 > p4 20:05 [5001] > PING 10.242 (10.0.0.242): 56 data bytes > ping: sendto: Host is down > ping: sendto: Host is down > ping: sendto: Host is down > ping: sendto: Host is down > ping: sendto: Host is down > ^C > --- 10.242 ping statistics --- > 12 packets transmitted, 0 packets received, 100% packet loss > p4 20:05 [5002] > OpenSSH_3.5p1 FreeBSD-20030201, SSH protocols 1.5/2.0, OpenSSL 0x0090701f > debug1: Reading configuration data /etc/ssh/ssh_config > debug1: Rhosts Authentication disabled, originating port will not be > trusted. > debug1: ssh_connect: needpriv 0 > debug1: Connecting to 10.242 [10.0.0.242] port 22. > debug1: connect to address 10.0.0.242 port 22: Operation timed out > ssh: connect to host 10.242 port 22: Operation timed out > p4 20:08 [5003] > > Script done on Thu Feb 26 20:08:08 2004 > > > ssh worked with 4.9 a couple days ago. Does anybody know > where I'm messing up? > > thanks, > > gary > > > Hi, Are you using ipfw or ipf ? if not Compair/send the output of ifconfig -a and sockstat on both boxes. -- -Ryan Merrick sandshrimp@comcast.net