On 12/11/18 1:52 PM, Ed Greshko wrote: > On 12/12/18 5:25 AM, Rick Stevens wrote: >> I just did the same. From a Spectrum IP here in Orange County, CA, >> the system doesn't respond (and Spectrum is a Comcast company). >> >> From a monitoring system in our ASN (a /22 network), it works peachy: > > Interesting.... > > Could you try it a second time? I ask since I tried from Taiwan. The first > attempt.. > > [egreshko@meimei etc]$ ssh -v bearto...@beartooth.info -p 999 > OpenSSH_7.9p1, OpenSSL 1.1.1 FIPS 11 Sep 2018 > debug1: Reading configuration data /etc/ssh/ssh_config > debug1: Reading configuration data /etc/ssh/ssh_config.d/05-redhat.conf > debug1: Reading configuration data > /etc/crypto-policies/back-ends/openssh.config > debug1: /etc/ssh/ssh_config.d/05-redhat.conf line 8: Applying options for * > debug1: Connecting to beartooth.info [208.100.51.176] port 999. > debug1: Connection established. > . > . > . > The authenticity of host '[beartooth.info]:999 ([208.100.51.176]:999)' can't > be established. > ECDSA key fingerprint is SHA256:KC2aZ8T2NiqBIcjVVrhwXfPgHunj2BtECvty3QGEzxc. > Are you sure you want to continue connecting (yes/no)? no > > The second time... > > [egreshko@meimei etc]$ ssh -v bearto...@beartooth.info -p 999 > OpenSSH_7.9p1, OpenSSL 1.1.1 FIPS 11 Sep 2018 > debug1: Reading configuration data /etc/ssh/ssh_config > debug1: Reading configuration data /etc/ssh/ssh_config.d/05-redhat.conf > debug1: Reading configuration data > /etc/crypto-policies/back-ends/openssh.config > debug1: /etc/ssh/ssh_config.d/05-redhat.conf line 8: Applying options for * > debug1: Connecting to beartooth.info [208.100.51.176] port 999. > ssh: connect to host beartooth.info port 999: Connection timed out > > This happens with a system that is behind a router and the router is not > pingable. > > If I try from another host that is directly connected to the Internet and is > pingable then > connections work all the time. > > I get the feeling the folks at Netwisp, Inc. are doing something to "prevent" > hacking.
Yup. Tried three times from our ASN from two different machines. All the test machines are behind a firewall (Cisco 65xx) and only one has a reverse DNS record. ---------------------------------------------------------------------- - Rick Stevens, Systems Engineer, AllDigital ri...@alldigital.com - - AIM/Skype: therps2 ICQ: 226437340 Yahoo: origrps2 - - - - LOOK OUT!!! BEHIND YOU!!! - ---------------------------------------------------------------------- _______________________________________________ users mailing list -- users@lists.fedoraproject.org To unsubscribe send an email to users-le...@lists.fedoraproject.org Fedora Code of Conduct: https://getfedora.org/code-of-conduct.html List Guidelines: https://fedoraproject.org/wiki/Mailing_list_guidelines List Archives: https://lists.fedoraproject.org/archives/list/users@lists.fedoraproject.org