-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 On Tuesday 03 June 2003 08:45, shrek-m@xxxxxx wrote: > Mike Burger schrieb: > >You need to actually allow SSH in through the firewall. > > > >Add this to your /etc/sysconfig/iptables file, and then run "service > >iptables restart": > > > >[0:0] -A INPUT -i eth0 -p tcp -m tcp --dport 22 -j ACCEPT > > and if you get no response > > add something like this in your filter table > > -A OUTPUT -o eth0 -p tcp -m tcp --sport 22 -j ACCEPT > One tip I have found very valuable is to log rejected packets. This helps you to go through and figure out why things like NIS or SSH aren't working quite right. Just take the lines that read -j REJECT, and put a similar one right above it that reads -j LOG. Mine looks like this at the end: - -A INPUT -p tcp -m tcp --syn -j LOG - -A INPUT -p udp -m udp -j LOG - -A INPUT -p tcp -m tcp --syn -j REJECT - -A INPUT -p udp -m udp -j REJECT - -- Jonathan Gardner <jgardner@xxxxxxxxxxxxxxxxxxx> (was jgardn@xxxxxxxxxxxxxxxxxxxxx) Live Free, Use Linux! -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.2.1 (GNU/Linux) iD8DBQE+5Ip4WgwF3QvpWNwRAg+LAJ9Yt9iznY9kFpGLpF64xVW+oRECrgCeL3XW 8PLfEY7FX8Q3i3569MZdPTQ= =78Xu -----END PGP SIGNATURE-----
