----- Original Message -----
Sent: Monday, May 10, 2004 6:31
PM
Subject: [freebsd] firewall mu yoksa
başka birşey mi?
arkadaşlar bunun ile ilgili olaram mail
atmıştım ama cevap alamadım ve hala da uğraşmaya devam
ediyorum!
kernel i
http://tomclegg.net/squid-tproxyde
dedigi gibi derledim ve kernel dosyasinin içerisinde
options
IPFIREWALL
options IPFIREWALL_FORWARD
options
IPFIREWALL_DEFAULT_TO_ACCEPT
ve
options
NMBCLUSTERS=65536
options
UFS_DIRHASH
options
RANDOM_IP_ID
options
TCP_DROP_SYNFIN
ler var.
ama ne ssh ne de baska bir baglanti kuramiyorum su
anda.
/etc/rc.conf un içerisinde birsey yazmama gerek var
mi?
baglanti sorunlarindan örnek vermek gerekirse!
u-2.05b# ssh -v
-l mes 192.0.0.2
OpenSSH_3.5p1 FreeBSD-20030924, SSH protocols 1.5/2.0,
OpenSSL 0x0090704f
debug1: Reading configuration data
/etc/ssh/ssh_config
debug1: Rhosts Authentication disabled, originating
port will not be
trusted.
debug1: ssh_connect: needpriv 0
debug1:
Connecting to 192.0.0.2 [192.0.0.2] port 22.
debug1: Connection
established.
debug1: identity file /root/.ssh/identity type -1
debug1:
identity file /root/.ssh/id_rsa type -1
debug1: identity file
/root/.ssh/id_dsa type -1
debug1: Remote protocol version 1.99, remote
software version OpenSSH_3.5p1
FreeBSD-20030924
debug1: match:
OpenSSH_3.5p1 FreeBSD-20030924 pat OpenSSH*
debug1: Enabling
compatibility mode for protocol 2.0
debug1: Local version string
SSH-2.0-OpenSSH_3.5p1 FreeBSD-20030924
debug1: SSH2_MSG_KEXINIT
sent
debug1: SSH2_MSG_KEXINIT received
debug1: kex: server->client
aes128-cbc hmac-md5 none
debug1: kex: client->server aes128-cbc
hmac-md5 none
debug1: SSH2_MSG_KEX_DH_GEX_REQUEST sent
debug1:
expecting SSH2_MSG_KEX_DH_GEX_GROUP
debug1: dh_gen_key: priv key bits
set: 134/256
debug1: bits set: 1590/3191
debug1:
SSH2_MSG_KEX_DH_GEX_INIT sent
debug1: expecting
SSH2_MSG_KEX_DH_GEX_REPLY
debug1: Host '192.0.0.2' is known and matches
the DSA host key.
debug1: Found key in
/root/.ssh/known_hosts:1
debug1: bits set: 1625/3191
debug1:
ssh_dss_verify: signature correct
debug1: kex_derive_keys
debug1:
newkeys: mode 1
debug1: SSH2_MSG_NEWKEYS sent
debug1: waiting for
SSH2_MSG_NEWKEYS
debug1: newkeys: mode 0
debug1: SSH2_MSG_NEWKEYS
received
debug1: done: ssh_kex2.
debug1: send
SSH2_MSG_SERVICE_REQUEST
debug1: service_accept: ssh-userauth
debug1:
got SSH2_MSG_SERVICE_ACCEPT
Connection closed by 192.0.0.2
debug1:
Calling cleanup 0x804c158(0x0)
#ipfw flush
dedikten sonra bile aynı!
bu arada hosts.allow
dosyası şu şeklide
ALL : ALL : allow
hosts.deny dosyası yok.
rc.conf dosyasının içerisi ise
firewall_enable="YES"
firewall_script="/etc/ipfw.rules"
ssh bağlantı kurulamayan serverın
loglarında
time out before auth... diyor hep.
2 gündür bununla uğraşıyorum!
yardım edebilirseniz sevinirim.
iyi
akşamlar!