Re: SSH request comes in as DNS? - Jean-Christian Imbeault

All of lore.kernel.org
 help / color / mirror / Atom feed

From: Jean-Christian Imbeault <jc@mega-bucks.co.jp>
Cc: netfilter@lists.netfilter.org
Subject: Re: SSH request comes in as DNS?
Date: Mon, 17 Feb 2003 13:01:45 +0900	[thread overview]
Message-ID: <3E505EA9.6050200@mega-bucks.co.jp> (raw)
In-Reply-To: 3E5055FF.4090808@mega-bucks.co.jp

In case it help anyone in diagnosing my problem, I found that if I had 
the following two rules my problem goes away:

$IPT -A INPUT -p tcp --sport 53 -j ACCEPT
$IPT -A INPUT -p udp --sport 53 -j ACCEPT

But I still don't understand why these packets with a SPT of 53 are 
coming from the firewall to my machine when I try and establish an SSH 
connection.

Seems like the Firewall (which is also a DNS server) is repling to a DNS 
query from SERVER1?? Why would SERVER1 be doing DNS queries?

It's true that SSH does do a DNS query when a machine tries to connect 
but even if this fails SSH just issues a warning. And Both SERVER1 and 
SERVER2 are configured the same way in regards to SSH so I can't see 
that SSH is actually the problem.

Hope the info is useful in helping me debug this problem ...

Thanks,

Jc

     prev parent reply	other threads:[~2003-02-17  4:01 UTC|newest]

Thread overview: 2+ messages / expand[flat|nested]  mbox.gz  Atom feed  top
2003-02-17  3:24 SSH request comes in as DNS? Jean-Christian Imbeault
2003-02-17  4:01 ` Jean-Christian Imbeault [this message]

Reply instructions:

You may reply publicly to this message via plain-text email
using any one of the following methods:

* Save the following mbox file, import it into your mail client,
  and reply-to-all from there: mbox

  Avoid top-posting and favor interleaved quoting:
  https://en.wikipedia.org/wiki/Posting_style#Interleaved_style

* Reply using the --to, --cc, and --in-reply-to
  switches of git-send-email(1):

  git send-email \
    --in-reply-to=3E505EA9.6050200@mega-bucks.co.jp \
    --to=jc@mega-bucks.co.jp \
    --cc=netfilter@lists.netfilter.org \
    /path/to/YOUR_REPLY

  https://kernel.org/pub/software/scm/git/docs/git-send-email.html

* If your mail client supports setting the In-Reply-To header
  via mailto: links, try the mailto: link

Be sure your reply has a Subject: header at the top and a blank line before the message body.

This is an external index of several public inboxes,
see mirroring instructions on how to clone and mirror
all data and code used by this external index.