the grep on the fedora side is
http://pastebin.com/m4161a4e8
thanks a lot for the help so far. If you are around I will check for your response then I will come back in the morning. probably attempt installing a new version of ubuntu.
the grep on the fedora side is
http://pastebin.com/m4161a4e8
thanks a lot for the help so far. If you are around I will check for your response then I will come back in the morning. probably attempt installing a new version of ubuntu.
ssh is working perfectly fine between fc6 and fc5 installations I have at work.
the ubuntu box i believe is the issue.
dont know yet what the issue is.
this was working fine on an earlier version of ubuntu. I was running ubuntu 5.1 earlier and did not have this problem.
only on 7.1
will moving to 8.04 solve this issue.
The details for ssh authentication are in /var/log/secure, and it does not even show any ssh connection attempts from 192.168.1.70 for today. That is the ip address of the Ubuntu machine, correct?
If you feel comfortable with it, I would like to see the results of these commands on the Fedora and the Ubuntu side:
Code:iptables -n -L iptables -t nat -n -L
yes the ubuntu box is 192.168.1.70
I shut down the fedora 5 box.
I was able to connect the fedora6 box to to the fedora 5 box and vice versa.
now I am able to connect the fedora 6 box to ubuntu box and vice versa at double speed with no hitches.
there is a genie in the bottle.
the tcpdump showed a pile of activity between the fc5 and ubuntu boxes.
how come the authentication information does not show.
Maybe i will upgrade the fc5 box shortly.
however I am having other samba connection problems with the ubuntu box.
through nautilus i.e.
makes the box somewhat difficult to use.
cant connect it to the network with any effect.
bit of a fix
started a little bit of actual work on it.
hi Moniker,
I am logging into the ubuntu machine from my fc6 box.
here is the results of the tests
on ubuntu machine.
-----
vikalp@punchbox:/home/vidyadhara$ sudo iptables -n -L
Password:
Chain INPUT (policy ACCEPT)
target prot opt source destination
Chain FORWARD (policy ACCEPT)
target prot opt source destination
Chain OUTPUT (policy ACCEPT)
target prot opt source destination
vikalp@punchbox:/home/vidyadhara$ sudo iptables -t nat -n -L
Chain PREROUTING (policy ACCEPT)
target prot opt source destination
Chain POSTROUTING (policy ACCEPT)
target prot opt source destination
Chain OUTPUT (policy ACCEPT)
target prot opt source destination
----
On the FC5 box.
----
[root@multiLinux vidyadhara]# /sbin/iptables -n -L
Chain INPUT (policy DROP)
target prot opt source destination
ACCEPT tcp -- 202.9.145.6 0.0.0.0/0 tcp flags:!0x17/0x02
ACCEPT udp -- 202.9.145.6 0.0.0.0/0
ACCEPT tcp -- 202.54.6.50 0.0.0.0/0 tcp flags:!0x17/0x02
ACCEPT udp -- 202.54.6.50 0.0.0.0/0
ACCEPT all -- 0.0.0.0/0 0.0.0.0/0
ACCEPT icmp -- 0.0.0.0/0 0.0.0.0/0 limit: avg 10/sec burst 5
DROP all -- 0.0.0.0/0 255.255.255.255
DROP all -- 0.0.0.0/0 192.168.1.255
DROP all -- 255.255.255.255 0.0.0.0/0
DROP all -- 0.0.0.0/0 0.0.0.0
DROP all -- 0.0.0.0/0 0.0.0.0/0 state INVALID
LSI all -f 0.0.0.0/0 0.0.0.0/0 limit: avg 10/min burst 5
INBOUND all -- 0.0.0.0/0 0.0.0.0/0
LOG_FILTER all -- 0.0.0.0/0 0.0.0.0/0
LOG all -- 0.0.0.0/0 0.0.0.0/0 LOG flags 0 level 6 prefix `Unknown Input'
Chain FORWARD (policy DROP)
target prot opt source destination
ACCEPT icmp -- 0.0.0.0/0 0.0.0.0/0 limit: avg 10/sec burst 5
LOG_FILTER all -- 0.0.0.0/0 0.0.0.0/0
LOG all -- 0.0.0.0/0 0.0.0.0/0 LOG flags 0 level 6 prefix `Unknown Forward'
Chain OUTPUT (policy DROP)
target prot opt source destination
ACCEPT tcp -- 192.168.1.20 202.9.145.6 tcp dpt:53
ACCEPT udp -- 192.168.1.20 202.9.145.6 udp dpt:53
ACCEPT tcp -- 192.168.1.20 202.54.6.50 tcp dpt:53
ACCEPT udp -- 192.168.1.20 202.54.6.50 udp dpt:53
ACCEPT all -- 0.0.0.0/0 0.0.0.0/0
DROP all -- 255.255.255.255 0.0.0.0/0
DROP all -- 0.0.0.0/0 0.0.0.0
DROP all -- 0.0.0.0/0 0.0.0.0/0 state INVALID
OUTBOUND all -- 0.0.0.0/0 0.0.0.0/0
LOG_FILTER all -- 0.0.0.0/0 0.0.0.0/0
LOG all -- 0.0.0.0/0 0.0.0.0/0 LOG flags 0 level 6 prefix `Unknown Output'
Chain INBOUND (1 references)
target prot opt source destination
ACCEPT tcp -- 0.0.0.0/0 0.0.0.0/0 state RELATED,ESTABLISHED
ACCEPT udp -- 0.0.0.0/0 0.0.0.0/0 state RELATED,ESTABLISHED
ACCEPT all -- 192.168.1.0 0.0.0.0/0
ACCEPT all -- 192.168.1.237 0.0.0.0/0
LSI all -- 0.0.0.0/0 0.0.0.0/0
Chain LOG_FILTER (5 references)
target prot opt source destination
Chain LSI (2 references)
target prot opt source destination
LOG_FILTER all -- 0.0.0.0/0 0.0.0.0/0
LOG tcp -- 0.0.0.0/0 0.0.0.0/0 tcp flags:0x17/0x02 limit: avg 1/sec burst 5 LOG flags 0 level 6 prefix `Inbound '
DROP tcp -- 0.0.0.0/0 0.0.0.0/0 tcp flags:0x17/0x02
LOG tcp -- 0.0.0.0/0 0.0.0.0/0 tcp flags:0x17/0x04 limit: avg 1/sec burst 5 LOG flags 0 level 6 prefix `Inbound '
DROP tcp -- 0.0.0.0/0 0.0.0.0/0 tcp flags:0x17/0x04
LOG icmp -- 0.0.0.0/0 0.0.0.0/0 icmp type 8 limit: avg 1/sec burst 5 LOG flags 0 level 6 prefix `Inbound '
DROP icmp -- 0.0.0.0/0 0.0.0.0/0 icmp type 8
LOG all -- 0.0.0.0/0 0.0.0.0/0 limit: avg 5/sec burst 5 LOG flags 0 level 6 prefix `Inbound '
DROP all -- 0.0.0.0/0 0.0.0.0/0
Chain LSO (0 references)
target prot opt source destination
LOG_FILTER all -- 0.0.0.0/0 0.0.0.0/0
LOG all -- 0.0.0.0/0 0.0.0.0/0 limit: avg 5/sec burst 5 LOG flags 0 level 6 prefix `Outbound '
REJECT all -- 0.0.0.0/0 0.0.0.0/0 reject-with icmp-port-unreachable
Chain OUTBOUND (1 references)
target prot opt source destination
ACCEPT icmp -- 0.0.0.0/0 0.0.0.0/0
ACCEPT tcp -- 0.0.0.0/0 0.0.0.0/0 state RELATED,ESTABLISHED
ACCEPT udp -- 0.0.0.0/0 0.0.0.0/0 state RELATED,ESTABLISHED
ACCEPT all -- 0.0.0.0/0 0.0.0.0/0
[root@multiLinux vidyadhara]# /sbin/iptables -t nat -n -L
Chain PREROUTING (policy ACCEPT)
target prot opt source destination
Chain POSTROUTING (policy ACCEPT)
target prot opt source destination
Chain OUTPUT (policy ACCEPT)
target prot opt source destination
----
Does this do any good.
modifications to my observations.
I was actually running ubuntu 7.04.
I observed identical results from two different ubuntu 7.04 machines.
They are able to connect perfectly to my fc6 machine. the fc5 machine is able to ssh to both the ubuntu 7.04 machines. only the ubuntu 7.04 machines are not able to connect to the fc5 over ssh.
now that is a mystery.
I Installed ubuntu 8.04 on another machine. I have still the same problem / behavior between ubuntu and fc5.
fc5 is able to ssh into the ubuntu system. the ubuntu system is not able to do the reverse. There are no firewall issues because other systems are able to log into the fc5 system.
Bookmarks