From owner-freebsd-questions@FreeBSD.ORG Sat Feb 5 19:17:52 2005 Return-Path: Delivered-To: freebsd-questions@freebsd.org Received: from mx1.FreeBSD.org (mx1.freebsd.org [216.136.204.125]) by hub.freebsd.org (Postfix) with ESMTP id 5CE1A16A4CE for ; Sat, 5 Feb 2005 19:17:52 +0000 (GMT) Received: from makeworld.com (makeworld.com [198.92.228.38]) by mx1.FreeBSD.org (Postfix) with ESMTP id E7F2543D48 for ; Sat, 5 Feb 2005 19:17:49 +0000 (GMT) (envelope-from racerx@makeworld.com) Received: from localhost (localhost.com [127.0.0.1]) by makeworld.com (Postfix) with ESMTP id 3D98560EA; Sat, 5 Feb 2005 13:17:49 -0600 (CST) Received: from makeworld.com ([127.0.0.1]) by localhost (makeworld.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id 43569-08; Sat, 5 Feb 2005 13:17:46 -0600 (CST) Received: from [198.92.228.34] (racerx.makeworld.com [198.92.228.34]) (using TLSv1 with cipher DHE-RSA-AES256-SHA (256/256 bits)) (No client certificate requested) by makeworld.com (Postfix) with ESMTP id A128860E7; Sat, 5 Feb 2005 13:17:46 -0600 (CST) Message-ID: <42051BDA.6040605@makeworld.com> Date: Sat, 05 Feb 2005 13:17:46 -0600 From: Chris User-Agent: Mozilla Thunderbird 1.0 (X11/20050101) X-Accept-Language: en-us, en MIME-Version: 1.0 To: Doug Van Allen References: <2063a95c05020509493b35ee0d@mail.gmail.com> In-Reply-To: <2063a95c05020509493b35ee0d@mail.gmail.com> Content-Type: text/plain; charset=ISO-8859-1; format=flowed Content-Transfer-Encoding: 7bit X-Virus-Scanned: by ClamAV 0.75.1/amavisd-new-2.2.1 (20041222) at makeworld.com - Isn't it ironic cc: freebsd-questions@freebsd.org Subject: Re: Can't ssh to server X-BeenThere: freebsd-questions@freebsd.org X-Mailman-Version: 2.1.1 Precedence: list List-Id: User questions List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Sat, 05 Feb 2005 19:17:52 -0000 Doug Van Allen wrote: > I'm running FreeBSD 5.3 and I'm trying to connect to it from school > using ssh. At school, I get connection refused. I checked the > auth.log and found: > > Feb 3 21:23:05 FreeBSD sshd[44237]: twist xxxxx.xxxx.edu to /bin/echo > "You are not welcome to use sshd from xxxxx.xxxx.edu." > > I ran tcpdmatch and got: > > $ tcpdmatch sshd bt20510.hvcc.edu > warning: sshd: no such process name in /etc/inetd.conf > client: hostname bt20510.hvcc.edu > client: address 151.103.21.131 > server: process sshd > matched: /etc/hosts.allow line 91 > option: severity auth.info > option: twist /bin/echo "You are not welcome to use sshd from > bt20510.hvcc.edu." > > I have made changes to hosts.allow to only allow my local network and > the ip's of the workstations from school. I am running PF and only > allowed the same rules. So what gives? What gives? You... Learn how to use PF and its rules. Learn to ensure that you have the proper ports open. Learn to allow certain IP's, ranges, classes, etc. I hate users that come off like ... Hey, I did all this, why dont THIS work. Well yanno what - it's the user that can't configure the product. If ya did, you wouldnt be posting... So - do yourself a favor... READ before you ask. -- Best regards, Chris If facts do not conform to the theory, they must be disposed of.