From owner-ssh@clinet.fi  Sat May 19 18:36:45 2001
Received: from smtp1.clinet.fi (smtp1.clinet.fi [194.100.2.57])
	by hutcs.cs.hut.fi (8.9.3/8.9.3) with ESMTP id SAA18268
	for <ssh-archiver@cs.hut.fi>; Sat, 19 May 2001 18:36:45 +0300 (EET DST)
Received: from mail.clinet.fi (mail.clinet.fi [194.100.0.7])
	by smtp1.clinet.fi (Postfix) with ESMTP
	id 7595920A98; Sat, 19 May 2001 18:36:38 +0300 (EEST)
Received: (from majordom@localhost)
	by mail.clinet.fi (8.9.3/8.9.3) id SAA30525
	for ssh-outgoing; Sat, 19 May 2001 18:15:39 +0300
Received: from bottom.bic.mni.mcgill.ca (bottom.bic.mni.mcgill.ca [132.206.178.20])
	by mail.clinet.fi (8.9.3/8.9.3) with ESMTP id SAA30522
	for <ssh@clinet.fi>; Sat, 19 May 2001 18:15:38 +0300
Received: (from malin@localhost)
	by bottom.bic.mni.mcgill.ca (8.11.3/8.11.3) id f4JFFbO10527
	for ssh@clinet.fi; Sat, 19 May 2001 11:15:37 -0400 (EDT)
Date: Sat, 19 May 2001 11:15:36 -0400
From: Jean-Francois Malouin <Jean-Francois.Malouin@bic.mni.mcgill.ca>
To: ssh@clinet.fi
Subject: Re: ssh2.4 and redhat 7.1
Message-ID: <20010519111536.A10394@bottom.bic.mni.mcgill.ca>
Mail-Followup-To: ssh@clinet.fi
References: <INEGJILEPLKGOIAFECHNIECHCDAA.papawu@mindspring.com> <Pine.LNX.4.21.0005192230460.2648-100000@marlene.cybercebu.com>
Mime-Version: 1.0
Content-Type: text/plain; charset=us-ascii
Content-Disposition: inline
User-Agent: Mutt/1.3.9i
In-Reply-To: <Pine.LNX.4.21.0005192230460.2648-100000@marlene.cybercebu.com>; from jcduque@cybercebu.com on Fri, May 19, 2000 at 10:33:59PM +0800
Sender: owner-ssh@clinet.fi
Precedence: bulk

* Julius C. Duque (jcduque@cybercebu.com) [20010519 10:56] thus spake:
> On Sat, 19 May 2001, PaPa-Wu wrote:
> 
> > Has anyone gotte ssh2.4 running on redhat7.1? I have got it compiled and
> > running but no boxes on my internal network can connect to it. the box can
> > connect to it self.  I'm running a 4 computer home network and the redhat7.1
> > box is a masqed machine. i can ping it but can't connect.  Is it soemthing
> > to do with the box having a 2.4.x kernel?
> 
> Please give more details. Here's one possible solution:
> Check /etc/hosts.allow on your Linux box. Include the line:
> 
> sshd: xxx.xxx.xxx.xxx, yyy.yyy.yyy.yyy, zzz.zzz.zzz.zzz.
> 
> where the x's, y's and z's are the IP addresses of the boxes in your
> internal network.

Another possible solution: rh-7.1 comes with ipchains/iptables and
depending on the level of security you choose at install time
some firewall rules won't let ssh connections in. Check with:

    /sbin/ipchains --list

if you choose ipchains (check the loaded modules). Then 

    ipchains -A input -s 0.0.0.0/0.0.0.0 -d 0.0.0.0/0.0.0.0 22:22 \
             -p 6 -j ACCEPT -y

should do the trick (line wrapped).

HTH,
jf

> 
> --------------------
> "Security begins as a state of mind."
>     -- NSA Manual

-- 
A box without hinges, key, or lid,
Yet golden treasure inside is hid.