Date: Tue, 19 Feb 2002 12:16:25 -0500 From: "B.K. DeLong" <bkdelong@pobox.com> To: freebsd-questions@FreeBSD.ORG Subject: SSHD problems: Forked child when logging in locally Message-ID: <5.1.0.14.2.20020219113057.03467bb0@pop.earthlink.net>
next in thread | raw e-mail | index | archive | help
Hi all - I recently lost the ability to ssh into my firewall from the local side of the network, though ironically I can still ssh to it from the outside. I'm running FreeBSD 4.5-STABLE and OpenSSH_3.0.2. When I try to ssh into the machine (192.168.2.1) from my Win98 SE laptop using ssh2 in SecureCRT 3.3 (192.168.2.11) my authlog shows: sshd[90]: debug1: Forked child 178. Then I close SecureCRT since nothing shows up in the window. Several seconds after I close it, this appears in my authlod: sshd[178]: Connection from 192.168.2.11 port 2696 sshd[178]: Connection from 192.168.2.11 port 2696 sshd[178]: Did not receive identification string from 192.168.2.11. sshd[178]: debug1: Calling cleanup 0x805ef04(0x0) I tried the same with putty on the same machine....with exactly the same results. My hosts.allow should be all set: sshd : 192.168.2.0/255.255.255.0 : allow And my ipf.rules file is setup correctly: ######################################## # INSIDE INTERFACE (xl1) [192.168.2.1] # ######################################## # Incoming Traffic #Allow in all TCP, UDP and ICMP traffic & keep state pass in quick on xl1 proto tcp from 192.168.2.0/24 to any keep state pass in quick on xl1 proto udp from 192.168.2.0/24 to any keep state pass in quick on xl1 proto icmp from 192.168.2.0/24 to any keep state block in log quick on xl1 all # Outgoing Traffic #Allow out all TCP, UDP, and ICMP traffic & keep state pass out quick on xl1 proto tcp from any to 192.168.2.0/24 keep state pass out quick on xl1 proto udp from any to 192.168.2.0/24 keep state pass out quick on xl1 proto icmp from any to 192.168.2.0/24 keep state block out log quick on xl1 all ------------------------------------------------- Any ideas? Thanks in advance. -- B.K. DeLong bkdelong@pobox.com 617.877.3271 http://www.brain-stream.com Play. http://www.the-leaky-cauldron.org Potter. http://www.attrition.org Security. http://www.artemisiabotanicals.com Herb. To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-questions" in the body of the message
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?5.1.0.14.2.20020219113057.03467bb0>