From mboxrd@z Thu Jan 1 00:00:00 1970 Received: from pigeon.gentoo.org ([208.92.234.80] helo=lists.gentoo.org) by finch.gentoo.org with esmtp (Exim 4.60) (envelope-from ) id 1PtI2d-0006n8-AJ for garchives@archives.gentoo.org; Sat, 26 Feb 2011 11:10:27 +0000 Received: from pigeon.gentoo.org (localhost [127.0.0.1]) by pigeon.gentoo.org (Postfix) with SMTP id 590551C088 for ; Sat, 26 Feb 2011 11:10:26 +0000 (UTC) Received: from mta5.srv.hcvlny.cv.net (mta5.srv.hcvlny.cv.net [167.206.4.200]) by pigeon.gentoo.org (Postfix) with ESMTP id 3FF93E073C for ; Sat, 26 Feb 2011 11:05:34 +0000 (UTC) Received: from [192.168.0.4] (ool-43505ef2.dyn.optonline.net [67.80.94.242]) by mta5.srv.hcvlny.cv.net (Sun Java System Messaging Server 6.2-8.04 (built Feb 28 2007)) with ESMTP id <0LH8002SE1H97PD0@mta5.srv.hcvlny.cv.net> for gentoo-user@lists.gentoo.org; Sat, 26 Feb 2011 06:05:33 -0500 (EST) Date: Sat, 26 Feb 2011 06:05:19 -0500 From: dhk Subject: Re: [gentoo-user] ssh problem In-reply-to: <201102260813.26008.michaelkintzios@gmail.com> To: gentoo-user@lists.gentoo.org Message-id: <4D68DE6F.4060002@optonline.net> Precedence: bulk List-Post: List-Help: List-Unsubscribe: List-Subscribe: List-Id: Gentoo Linux mail X-BeenThere: gentoo-user@lists.gentoo.org Reply-to: gentoo-user@lists.gentoo.org MIME-version: 1.0 Content-type: text/plain; charset=ISO-8859-1 Content-transfer-encoding: 7BIT X-Enigmail-Version: 1.1.2 References: <4D63A165.4000007@optonline.net> <4D679C02.6030408@optonline.net> <201102260813.26008.michaelkintzios@gmail.com> User-Agent: Mozilla/5.0 (X11; U; Linux x86_64; en-US; rv:1.9.2.13) Gecko/20110105 Lightning/1.0b3pre Thunderbird/3.1.7 X-Archives-Salt: X-Archives-Hash: 60d7b659e87b6ab4583a1b68eca6bb62 On 02/26/2011 03:13 AM, Mick wrote: > On Saturday 26 February 2011 07:49:44 Adam Carter wrote: >>> The nc command does nothing when run from the same host I'm trying to >>> ssh in to. >> >> Ok so you may not have an ssh problem (so ignore the ssh specific stuff for >> now) you have a network problem. It will be either routing or firewalling. >> If you can ping the box, then its a firewall problem. So, try pinging it >> first, and if that works then you know that routing is in place and its a >> firewall problem. If that doesn't work try traceroute to see how far you >> can get, and the last hop may provide clues as to why you can access it by >> sending an ICMP message. Post back what you find. > > Depending on configuration of routers and firewalls ICMP packets may be > dropped, so if plain ping/traceroute fails use httping and tcptraceroute (or > traceroute -T -p 22) I don't know why I would have a firewall or network problem, the set up I have has been here for 8+ years. The setup is like this. In the basement the cable internet comes in and into a cable modem. Then an RJ45 out of the cable modem into an 8-port NETGEAR Router/Switch. Upstairs is a hub with three computers connected and this hub is connected to the switch in the basement. The only problem I ever had was when the dhcp address changed, then it needed to be added to the PORT FORWARDING section of the switch with port 22. Remember I can still log in remotely from Redhat and Suse boxes that weren't updated with the new openssh. When ssh'ing in from a remote updated Gentoo box the "Read from socket failed: Connection reset by peer" message is displayed. This message is not displayed when trying to ssh in from inside the network. Alright, back to the task at hand. When I tell the switch to "Respond to Ping on Internet WAN Port" the ping statistics are good: 3 packets transmitted, 3 received, 0% packet loss, time 2007ms. I'm not sure where to go from here. Is there anything in the sshd_config or ssh_config files that I need? After the upgrade the new files were merged with the current. Thanks dhk