Re: Shell connections refused
Aaron Brashears wrote:
>
> D1 (10.20.0.1), and D2 (10.20.0.2) are both synched to potato on
> debian.org. Both machines have telnetd, telnet, ssh, and sshd available
> or running. Here's a sample session from D1:
> ---------------------------------
> $ telnet 170.1.36.137
> Trying 170.1.36.137...
> Connected to 170.1.36.137.
> Escape character is '^]'.
> Connection closed by foreign host.
>
> $ ssh 170.1.36.137
> Connection closed by foreign host.
> ---------------------------------
What is IP 170.1.36.137? Is this D2? What happened to 10.20.0.2?
>
> Here's what happens from D2:
>
> ---------------------------------
> $ ping 10.20.0.1 PING 10.20.0.1 (10.20.0.1): 56 data bytes
> 64 bytes from 10.20.0.1: icmp_seq=0 ttl=64 time=0.6 ms
> 64 bytes from 10.20.0.1: icmp_seq=1 ttl=64 time=0.3 ms
> 64 bytes from 10.20.0.1: icmp_seq=2 ttl=64 time=0.3 ms
> 64 bytes from 10.20.0.1: icmp_seq=3 ttl=64 time=0.3 ms
>
> --- 10.20.0.1 ping statistics ---
> 4 packets transmitted, 4 packets received, 0% packet loss
> round-trip min/avg/max = 0.3/0.3/0.6 ms
>
> $ telnet 10.20.0.1
> Connected to 10.20.0.1.
> Escape character is '^]'.
> Debian GNU/Linux 2.2 (frozen) kona
> kona login:
>
> $ ssh 10.20.0.1
> scribe:/home/aaron# ssh -l aaron 10.20.0.1
> aaron@10.20.0.1's password:
> ---------------------------------
>
> How on earth could this happen? Anyone know why one of the machines
> would blatently refuse connections, but the other wouldn't?
Have you looked at the hosts.deny and hosts.allow on D2? Compare them to
the ones on D1.
> For
> reference, the IP addresses were modified in the logs.
I don't know what you mean by this. Who modified the logs?
Matthew
Reply to: