Re: (fedora) Re: how to setup rsh(d) on FC4

From: "J. K. Cliburn" <jcliburn@xxxxxxxxx>
Date: Wed, 08 Feb 2006 18:09:53 -0600

Mikkel L. Ellertson wrote:

J. K. Cliburn wrote:

On 2/8/06, Jacob (=Jouk) Jansen <joukj@xxxxxxxxxxxxxxxxxxxx> wrote:

a.apprich@xxxxxxxxxxxxxxxxxxxx wrote on 8-FEB-2006 11:30:21.57

I try to get the rsh command working to a FC4 system

[snip]

what does /var/log/messages tell you about login via rsh?

No Route to host

I know you said you have the relevant ports unfiltered in iptables,
but isn't this the typical message received when you attempt to access
a blocked port?

Nope. You will get connection refused if the port is set to reject,
and a timeout message if it is set to drop. You get the No route to
host when there is a network configuration problem.

To test whether netfilter on the server side might result in a "No route to host" indication on the client side, I removed a rule in iptables that allowed traffic on port 23 on an internal server running telnetd under xinetd. The default catchall netfilter rule (a rule which remains unmodified from when I installed FC4) in /etc/sysconfig/iptables is this:

-A RH-Firewall-1-INPUT -j REJECT --reject-with icmp-host-prohibited

This rule results in the following message when I attempt to connect to port 23:

[jcliburn@osprey ~]$ telnet petrel
Trying 192.168.1.6...
telnet: connect to address 192.168.1.6: No route to host

Here's the relevant snippet from tethereal.

Source: 192.168.1.6 (192.168.1.6)
Destination: 192.168.1.3 (192.168.1.3)
Internet Control Message Protocol
Type: 3 (Destination unreachable)
Code: 10 (Host administratively prohibited)

I believe Mr. Jansen has a problem with one or more filtered ports.

Jay

--
fedora-list mailing list
fedora-list@xxxxxxxxxx
To unsubscribe: https://www.redhat.com/mailman/listinfo/fedora-list

References:
- Re: (fedora) Re: how to setup rsh(d) on FC4
  - From: Jacob (=Jouk) Jansen
- Re: (fedora) Re: how to setup rsh(d) on FC4
  - From: J. K. Cliburn
- Re: (fedora) Re: how to setup rsh(d) on FC4
  - From: Mikkel L. Ellertson

Prev by Date: Connecting to another KDM
Next by Date: Re: chmod
Previous by thread: Re: (fedora) Re: how to setup rsh(d) on FC4
Next by thread: Re: (fedora) Re: how to setup rsh(d) on FC4
Index(es):
- Date
- Thread

Relevant Pages

Re: External drives not installing or working properly on USB
... with the USB system before but these disappearred when I disabled the ... Only one of the five host controllers is connected to the 6 ... work on any port on the PC? ... operating system to recognise the four additional 'drives'. ...
(microsoft.public.windowsxp.general)
Re: A firewall wont stop this one
... On top of that I implement IPF on each host ... >> for further access control to limit NFS, ... By restricting access to the NFS server. ... >> via port filtering that only allowed specific hosts rather than all. ...
(alt.computer.security)
Re: /etc/hosts.equiv & .rhosts
... want to login at another host, that host needs the first host's name ... best to allow key-only login so hackers can't ... on the port 22 as it WILL be messed with all day long. ... # Protocol 2 only ...
(comp.os.linux.security)
Re: Configuring SBS to allow Remote Access
... definitely will continue to host the website elsewhere as ... pointing to the SBS server. ... >Port 80 does not need to be opened just to use RRW. ... >else host your web site or but the web site on a ...
(microsoft.public.backoffice.smallbiz2000)
Re: REMOTE DESKTOP NOT WORKING ANY LONGER PLEASE HELP!
... I understand that you have checked in the registry *which* port is ... Is the host located at your work? ... be a centrally managed GPO which disables Remote Desktop ... Noest MCSE, CCEA, Microsoft MVP - Terminal Server ...
(microsoft.public.windows.terminal_services)