David Bolton wrote:
> Peter Walker <(E-Mail Removed)> wrote:
>>>
>>> I can ssh on to the FreeBSD server from the RH client and I have turned
>>> off the firewall on the RH client to ensure there are no problems there.
>>>
>>
>> The problem is now solved.
>>
>> I tweaked the firewall rules and then restarted the firewall and it
>> finally works.
>>
>> It does not explain to me why it did not work when the firewall was
>> turned off, effectively allowing all access to the workstation but what
>> the hell, I prefer the firewall on so that I have a secure system anyway.
>>
>
> Hello Peter, when you flushed your firewall rules, did you then ssh onto
> the
> FreeBSD, or were you already logged on when you disabled the firewall?
> I'm asking because on my FreeBSD (4.8 stable, using ipfilter v3.4.31) I
> have deny compiled as the default in the kernel (options
> IPFILTER_DEFAULT_BLOCK), yet if I ssh onto the box and flush the rules,
> the ssh session continues indefinitely despite all further login attempts
> being blocked.
>
> Best regards,
> David
> --
Sorry but I can't really help you here as the firewall I was dealing with
was on the RedHat Linux client machine.
If I understand your query, you are asking why it is that your ssh
connection to your FreeBSD server remained persistent after you flushed the
firewall in the FreeBSD server?
Presumably you had a rule that allows ssh connections to override your
default DENY rule?
If that is your query, I have to admit that I have not done much work with
the FreeBSD firewall but imagine that when you flushed the firewall it
would only affect new connection attempts not existing connections.
Pep.
|
Similar Threads
Linear Mode
