incoming ssh/sftp blocked by iptables
Fulko.Hew at sita.aero
Fulko.Hew at sita.aero
Wed Apr 14 21:08:40 UTC 2004
Satish Balay <balay at fastmail.fm>@redhat.com on 04/14/2004 04:45:04 PM said:
On Wed, 14 Apr 2004 Fulko.Hew at sita.aero wrote:
> >
> >
> > With test 2 there are now a set of iptable rules that
> > block (amongst other things) SSH and SFTP.
> >
> > When starting the system it seems as though the NTP
> > script 'knows' that iptables is in effect and adds
> > a hole to talk through.
> >
> > The NTP stuff appears to have been added around test1, but
> > didn't affect anyone, because there were no default iptable
> > rules... now there are.
> >
> > I would think that the startup script for SSH should
> > also punch a hole in iptables in a similar manner.
> >
> >
> > Any comments before I Bugzilla it?
>
> If 'ssh' is listed as a 'Trusted Service' in
> system-config-security-level and you can't get in via ssh - then it
> would be bugzilla thing. (However this works for me)
GAAKK!
I didn't even know that existed.
That makes it even _more_ complicated for the
end user to try to get a working system.
After looking at that, it makes me wonder why it thinks my
security level is "Enable firewall", when I told it originally
"no firewall" during install time.
More information about the fedora-test-list
mailing list