Re: networking via cross cable

From: Michael Heiming (
Date: 05/30/04

Date: Sun, 30 May 2004 17:15:33 -0000

Hash: SHA1
NotDashEscaped: You need GnuPG to verify this message

In comp.os.linux.networking Allan Adler <> suggested:

> Michael Heiming wrote:

>>There's no need to reinstall anything, you can start "lokkit" as
>>root from some xterm and fill in your trusted device below

> I ran lokkit on minsk and set it up with medium security and to accept ssh.
> Although the two machines can ping each other and traceroute shows they
> can find each other, ssh from pinsk to minsk doesn't work. It complains
> that it doesn't trust the port. I rebooted minsk to see if that was the
> problem, but that didn't help. I ran lokkit again and it ran with
> no apparent recollection of my last session, i.e. it had high security
> as the default and nothing allowed from outside. So, I did the work again
> of setting security to medium and allowing outside ssh. It didn't help.

If you have done your changes and they are working, issue:

 service iptables save
 chkconfig iptables on

> One way to check the work would be if there were some file to look at
> or some program to run which would say whether minsk is set to accept
> outside ssh.

Now, that's a mess, try on the systems 'ssh localhost' at first,
to see if it's running at all, if not start it (as root):

 /etc/init.d/sshd start
Keep sshd running after reboot:
 chkconfig sshd on

To check which service will be started in which runlevel, try:

 chkconfig --list

> After looking at the ssh man page in search of some daemon maybe named
> sshd, I also tried, not knowing what I was doing, adding pinsk to minsk's
> /etc/hosts.allow file, but I don't know what format pinsk should be entered

If sshd is compiled with tcp_wrapper support add to


Exchange with the IP of the other machine.

> in. Since the comments in the file mention tcpd, I looked at the man page for
> tcpd and then tried to run it, in case it was necessary to start it. This

No, you don't run it, it will be used from services running from
(x)inetd if configured to do so.

Hope that helps?

If there are still problems, try:

ssh -vvv

Exchange with the IP of the other machine.

Post the output if you still have problems.

Michael Heiming (GPG-Key ID: 0xEDD27B94)
mail: echo zvpunry@urvzvat.qr | perl -pe 'y/a-z/n-za-m/'
Version: GnuPG v1.2.1 (GNU/Linux)