RE: [TCLUG:18277] firewall question

To: <tclug-list@mn-linux.org>
Subject: RE: [TCLUG:18277] firewall question
From: "Thomas T. Veldhouse" <veldy@veldy.net>
Date: Mon, 29 May 2000 09:52:24 -0500
Importance: Normal
In-Reply-To: <m3og5q6jeo.fsf@eggplant.mn.mtu.net>

You closed off too many ports.  SSH often tries to open an incoming socket
around 900 to 1024.

Tom Veldhouse
veldy@veldy.net

-----Original Message-----
From: jpschewe@eggplant.mtu.net [mailto:jpschewe@eggplant.mtu.net]
Sent: Monday, May 29, 2000 12:00 AM
To: tclug-list@mn-linux.org
Subject: [TCLUG:18277] firewall question

I've been working on closing up my external connection a bit and I'm seeing
some odd behavior now that it's closed down.  If disallowed any connections
to
privilaged ports, except the few services I want people to get at, ssh, www,
etc.  Now if I ssh from any machine that is masquerading through the
firewall,
all is good.  However if I ssh from the firewall machine to anywhere outside
I
can't get it to connect.  When I turn on logging and look in my messages log
I
see that the machine I'm sshing to is trying to connect to the firewall on
ports 1021 or 1022.  Both machines are using ssh1 protocol 1.5.

--
Jon Schewe
http://eggplant.mtu.net/~jpschewe
schewe@tcfreenet.org

---------------------------------------------------------------------
To unsubscribe, e-mail: tclug-list-unsubscribe@mn-linux.org
For additional commands, e-mail: tclug-list-help@mn-linux.org

Follow-Ups:
- Re: [TCLUG:18277] firewall question
  - From: Scott Dier <dieman@ringworld.org>

References:
- firewall question
  - From: Jon Schewe <jpschewe@eggplant.mtu.net>

Prev by Date: Re: [TCLUG:18280] XFree86 4.0 RPMs?
Next by Date: Re: [TCLUG:18277] firewall question
Prev by thread: Re: [TCLUG:18277] firewall question
Next by thread: Re: [TCLUG:18277] firewall question
Index(es):
- Date
- Thread