Unable to ssh to my server from behind draconian school firewall

**yanom** · September 6th, 2012

I'm trying to SSH to my home server from school. We have a pretty draconian filter/firewall here (whitelist based. seriously.), but I've assured that my IP is on the whitelist, and I can in fact visit my IP with a web browser and see the web server I've set up on the machine. But when I try SSH'ing in with PUTTY or similar, I get:

Code:

ubuntu@ubuntu:~$ ssh 70.239.162.206
Connection closed by 70.239.162.206

indicating that it's infact my server machine that doesn't want to accept connections from me from behind the firewal. How do I fix this?
oh, and ssh -vvv give this:

Code:

ubuntu@ubuntu:~$ ssh -vvv 70.239.162.206
OpenSSH_5.9p1 Debian-5ubuntu1, OpenSSL 1.0.1 14 Mar 2012
debug1: Reading configuration data /etc/ssh/ssh_config
debug1: /etc/ssh/ssh_config line 19: Applying options for *
debug2: ssh_connect: needpriv 0
debug1: Connecting to 70.239.162.206 [70.239.162.206] port 22.
debug1: Connection established.
debug1: identity file /home/ubuntu/.ssh/id_rsa type -1
debug1: identity file /home/ubuntu/.ssh/id_rsa-cert type -1
debug1: identity file /home/ubuntu/.ssh/id_dsa type -1
debug1: identity file /home/ubuntu/.ssh/id_dsa-cert type -1
debug1: identity file /home/ubuntu/.ssh/id_ecdsa type -1
debug1: identity file /home/ubuntu/.ssh/id_ecdsa-cert type -1
debug1: Remote protocol version 2.0, remote software version OpenSSH_5.9p1 Debian-5ubuntu1
debug1: match: OpenSSH_5.9p1 Debian-5ubuntu1 pat OpenSSH*
debug1: Enabling compatibility mode for protocol 2.0
debug1: Local version string SSH-2.0-OpenSSH_5.9p1 Debian-5ubuntu1
debug2: fd 3 setting O_NONBLOCK
debug1: SSH2_MSG_KEXINIT sent
Connection closed by 70.239.162.206

**SlugSlug** · September 6th, 2012

is port 22 blocked by the firewall

and you probably should hash out your IP

**yanom** · September 7th, 2012

Originally Posted by SlugSlug

is port 22 blocked by the firewall

I'm able to SSH to other places, such as GitHub (they don't provide shell access, but git'ing is done over the SSH protocol, and you can log in via SSH to confirm the connection works. It does.

and you probably should hash out your IP

what do you mean by this? It's the school's internet hookup I'm using try and SSH, not a personal connection.

**SlugSlug** · September 7th, 2012

the IP in the code boxes

is ssh server installed on your home box?

**yanom** · September 8th, 2012

Originally Posted by SlugSlug

the IP in the code boxes

is ssh server installed on your home box?

yes, on the server (also in my house) that I'm trying to connect to and on my PC

**iponeverything** · September 8th, 2012

you can set a root cron to start sshd in debug mode every 5 minutes if it is not running and have its stdout and stderr redirected to file - in debug it accept 1 connection then exit.

connect a couple of times from from school - when you get home check your debug file.