Software :: Denyhosts Blocking Router IP?
Jul 9, 2010
I've been using the denyhosts software for about 8 months to block IPs that are trying to connect to my network that shouldn't be. I'm having trouble with it today for the first time and I can't track down the issue.It is installed on the main server which is the outside IP for the network as well. This should allow me to SSH to the hostname/network IP, or the NAT IP as well. It worked fine up until this morning when I started to work on an ftp server, as far as I know I didn't make any changes that should cause problems.
hosts.deny starts with no 192.x.x.x addresses in it. In allowed-hosts for denyhosts I have entered 192.168.1.1 so that the router should never get blocked.I can SSH to the hostname perfectly fine, connection doesn't drop or anything.If I SSH to the NAT address the connection hangs there while the IP address gets added to hosts.denyI can confirm 100% that I was able to SSH to my NAT from within the network with no problem, now it seems to throw the router IP into hosts.deny if I try to connect from within the network using the NAT.Here is the error that I get in /var/log/securesshd[9272]:d not receive identification string from 192.168.1.1I did update my system recently which may have changed the way some files behave, I will try updating Denyhosts as well. It looked like the address being blocked was an IPv6 since it was showing as:sshd[9201]: refused connect from ::ffff:192.168.1.1 (::ffff:192.168.1.1)
View 1 Replies
ADVERTISEMENT
Oct 31, 2010
I've been using Deny Hosts for a couple of years now without trouble. My router forwards SSH calls to host tock on my LAN. My router's internet hostname is michigan. I keep an svn repository on tock and access it through michigan. In this way I can update my repository when I'm at home or away.Just today, however, whenever I try any ssh to michigan, I get a closed connection and find michigan in my hosts.deny file. I delete it, make a successful connection, but then on my next attempt - there I am in the hosts.deny file again.
I've worked around it by putting michigan into my hosts.allow file, but I would really like to know what's going on. I've configured Hosts Deny to lock out IPs after three failed attempts, but it is locking out michigan after one successful connection.
View 3 Replies
View Related
Jun 17, 2010
I bought a wired broadband dsl router to provide another layer of security for my computer running ubuntu. I just plugged it in without installing any software etc. It blocks the internet connection.
View 3 Replies
View Related
Mar 23, 2010
For system calls, is blocking or non-blocking default in C? Simple question, just am not seeing the answer super quickly.
View 4 Replies
View Related
Dec 25, 2010
I have a device that is working on modbus protocol andI have written a small program(with block TCP read method ) to read its registers via modbus protocol.my program is working very well but except those times that I unplug the Ethernet cable or turning off the modbus gateway during programs work.at this time my program stops on recv system call (if it reach this system call exacly when I unplug Ethernet cable or turning off the modbus gateway during programs work).I changed my source to work in nonblock TCP method, at this time with the same situation my program does not stop/block on recv system call but after pluging back the Ethernet cable or resuming the connectivity situation back it reads data incorrectly .this is my code:Quote:
#define DEBUG
#include <fcntl.h>
#include <string.h>
[code]...
View 5 Replies
View Related
Aug 31, 2010
So I installed denyhosts on my system and I ssh to it fine. Then all of a sudden I got an email saying my ip was added to the /etc/hosts.deny file.I have no clue why. I did not fail the login. So I had an open session and put it in the /etc/hosts.allow file and tried to ssh back in no problem.Then I logged out and all of a sudden I got the email saying my ip was added to the hosts.deny again. Now I am kicked out of the system..
I am guessing I cannot get back in until I get to the console and remove it. I can power on and off the system remotely but I enabled the chkconfig denyhosts on option so it starts on reboot. No remote console is setup.So it looks like I am hozed until I can get to the console, bummer as I was trying to set up a spacewalk server on it. I cannot get to the console for a few days so if anyone has ideas how I can get back in let me know. But denyhosts seems to be working as designed.
This was a default install I did not configure anything funky. Just changed the email to root and started it.I thought about changing my client IP but that wont work as I only have ssh passed on my router to that IP so if I change the client IP I wont get into my routing machine.I think i answered my own question but just thought I would askI guess my real question is why would denyhosts block my IP when the login did not fail and how do i configure it so this does not happen again.
View 8 Replies
View Related
Aug 12, 2010
I did a goole search and found several hits telling me about this error I am getting
service denyhosts start
starting DenyHosts: /usr/bin/env python2.4 /usr/bin/denyhosts.py --daemon --config=/etc/denyhosts.conf
[code]....
View 11 Replies
View Related
Jan 29, 2011
how to install denyhosts on opensuse 11.3 having issues with to install python 2.5....
View 5 Replies
View Related
Jun 2, 2010
I am with a customer who has Suse 10.1 in production environment and connected to the internet.For now I want to install denyhosts on this machine since I see lots of failed login attempts outside office hours.However when I do: python setup.py install I get the message File "setup.py", line 4, in ?from distutils.core import setupmportError: No module named distutils.coreI don't know how to solve this. I have added a repository to install distutils.core but could not find it
View 1 Replies
View Related
Mar 8, 2010
i am trying to install denyhost on ubuntu 9.10 server, to make it run as daemon.I am following steps from this linkI have downloaded version 2.5 of denyhosts, but i cannot find thi sfile/usr/bin/denyhosts.py
View 1 Replies
View Related
Jul 12, 2010
I have recently installed denyhosts to help guard against bruteforce ssh attacks on my Fedora 12 server from the Fedora repositories. If I manually start denyhosts (as root) using: /usr/sbin/denyhosts.py --daemon
it works fine. The denyhosts log file is created and indeed the /etc/hosts.deny file is updated. However if I make attempts to start denyhosts automatically upon the server restart denyhost fails with a permission denied error for /etc/hosts.deny (error 13) I have tried using chkconfig to enable /etc/init.d/denyhosts on run levels 3, 4 and 5. I have also tried including the line:
/usr/sbin/denyhosts.py --daemon
in /etc/rc.local Both of these attepts report the same error. anyway to automatically start denyhosts or know why this problem might be happening?
View 1 Replies
View Related
Sep 9, 2010
I am having issues getting yum to work with the repos for fail2ban and denyhosts. I followed the centos link on installing/cfg repos. However every time i run yum install fail2ban or denyhosts it does not find the software. I read in several google searches that I should be able to install it using yum. Is that info wrong? These are the link I was s reading too from centos. [URL]. I know I can download the rpm or a tar file but I would like to keep it in sync with yum if possible. May be I have the wrong repo? CentOSPlus is enabled also.
View 3 Replies
View Related
Aug 10, 2010
I have setup Denyhosts to run on my server, and have been using it succesfully for the last few weeks, to allow me to ssh into my server from my home dev machine.
This morning, I accidentally typed my password incorrectly three times - and ended up being locked out of the system (tghat was ok, because that was what was supposed to happen). I logged into the server via another way and took the following actions (in the order given)
/etc/init.d/ssh stop
/etc/init.d/denyhosts stop
removed my IP address from /etc/hosts.deny
/etc/init.d/ssh start
[Code].....
View 1 Replies
View Related
May 3, 2010
I've been running denyhosts on Ubuntu 8.04 servers without any problems using the how-to found hereow that I have a new Ubuntu 10.04 server running, I thought I would just install denyhosts from the Ubuntu repository not realizing that the paths and filenames of the install are different from the how-to I am used to using.I figured out what the name of the new denyhosts config file is (at least new to me) and the new location, but I'm not sure about the "allowed-hosts" config file.Does anybody know where the new path for this file is and whether the filename is still the same?
View 2 Replies
View Related
May 16, 2011
I just set up denyhosts and it worked properly the first time adding lots of ips to the hosts.deny.I then set it to run every 12 hours noon and midnight.I wanted to see if ran properly and I got all this.Does it look like its working?
Code:
May 15 12:00:01 hyrule CRON[14286]: (root) CMD (python /usr/share/denyhosts/denyhosts_ctl.py -c /usr/share/denyhosts/denyhosts.cfg )
[code]...
View 4 Replies
View Related
Mar 31, 2010
My question is quite simple:What are type of applications where socket in blocking mode can be used ?
And where non-blocking mode to be used ??
TCP is blocking by default.
View 2 Replies
View Related
Apr 13, 2010
Because of the configuration of my house, I need two routers.I have a DLink ADSL router as my main router and the Belkin N1 as my repeater.I have set up the IP address in the Belkin to be 10.1.1.10 - my DLink is 10.1.1.1. I have disable the dhcp in the Belkin and set the DNS as ISP provided. [URL]..I have set the channel to 11 and in the Ubuntu Network Manger I have set the IPV4 to Link Local Only. I can see the Belkin and connect with my PC.but it will not take me through to the internet.
View 9 Replies
View Related
Jun 18, 2011
I want to set up a Linux box as a wireless router to replace our existing Netgear WNR1000 router, as I believe the Netgear does not support the coming IPv6 protocol. Unfortunately, it is not flashable with OpenWRT or DD-WRT presently.
As we have Comcast, our cable modem acts as a dumb modem according to the customer support guy I talked to, and our router is the one that asks for the IP address from DHCP. Thus, when Comcast switches over to IPv6, I don't believe my existing router would work, correct?
My idea is to take a Linux box and put two NICs and a wireless adapter in it, using IPCop or Smoothwall to set up a router. I could then enable IPv6 support for when we have IPv6 with Comcast. Is that possible? Would there be a way to get BIND to hand out private IP addresses in the same subnet on the both the LAN NIC and the wireless card?
View 1 Replies
View Related
Nov 6, 2009
I have a desktop PC running Ubuntu 9.10 and Windows 7, and a Eee PC 701 laptop running EasyPeasy Ubuntu 9.04. I'd like to connect the desktop to the laptop with a wired connection (eth0), then the laptop to my ADSL router using wireless (ath0).
I have a crossover ethernet cable (I bought on ebay). I have set up my laptop with a static IP address on my LAN and it uses OpenDNS.
I have added this to /etc/sysctl.conf on the laptop:
net.ipv4.ip_forward=1
Then I tried this on the laptop:
sudo iptables --table nat --append POSTROUTING --out-interface ath0 -j MASQUERADE
sudo iptables --append FORWARD --in-interface eth0 -j ACCEPT
This is a variation on what I found on other sites describing how to set up a router. I don't understand iptables very well, but I gather that the above two lines should set up forwarding so that traffic from my router to the laptop will be forwarded to the desktop, and vice versa.
But this doesn't work. The connection doesn't even establish between the laptop and the desktop.
View 12 Replies
View Related
Apr 24, 2010
I'm having trouble getting my network set up the way that I want it/had it. You see, when I first set up my network, I just had my cable modem going directly to my standard wired router (A D-Link DI-604), which had DHCP,and was connected to all of the computers on my network. I had one switch hooked up to one of the ports of the router, but this was a regular switch, and it would not try to assign IP addresses, it would just pass through the DHCP info as I wanted.
Now however, my network setup has changed. My room mate and I both got laptops, and we decided that we wanted to have wireless access so we didn't have to constantly plug in to the router.
Now my network is set up like this: The modem is hooked up to the router(DI-604), which is hooked up on the LAN side to our computers, our switch (which is hooked up to 3 more computers), and to a wireless router card (A Gigabyte GN-BC01).
The wireless router card has two jacks for ethernet. One for WAN, and one for LAN. The LAN side we have plugged only into the computer in which the card is installed.
Now the problem is this: The wireless router card comes with DHCP by default, and it's assigning addresses to the laptops and to the computer hat it's in, and worse, the IP addresses are on a different subnet than that of the main dlink router. The Main (dlink) router assigns addresses from 192.168.0.1 (itself) to 192.168.0.254, while the wireless router card assigns addresses from 192.168.1.1 to 192.168.1.254 (itself).
Because of this, I cannot access services on the wireless network from my wired network or vice versa. The first thing I tried was setting the card to assign addresses from 192.168.0.12 to 192.168.0.253, however it just said "internal error" when I tried to do this. I decided that this may be because it sees that it was being assigned an address on it's WAN side on the same subnet. So the next thing I tried was disabling DHCP and setting the "LAN IP Address" to 192.168.0.12, hoping that the DHCP would just go through the card, like a switch. I would have set the LAN IP address to be assigned by DHCP, but this was not an option, so I decided that'd be the best thing to set it to.
Once again however, setting the LAN ip address to an address on the same subnet as that of the IP assigned to it's WAN side caused it to report an "internal error". I verified that this was the issue by setting the LAN address to several other private IP addresses to test (I.E. 10.0.0.1, 192.168.3.1, 192.168.5.12).
My question then really is: How do I set up both routers so that I can access services and computers from each network from the other network. Should I set them with different subnets and set the gateway on the wireless network to the main router? To the wireless router card? Should I put them on the same subnet? Will it know how to communicate?
Here is a link to (picture) my network diagram. Network Diagram
View 2 Replies
View Related
Aug 7, 2010
I'm using a cross-over ethernet cable to connect a Desktop Windows 7 box, and a laptop running on SUSE 11.2. I want Windows to connect to the internet via the laptop's wireless interface.
View 1 Replies
View Related
Mar 26, 2009
These r IP provided by my ISP that i've put on Fedora 8:
WAN IP:xxx.xxx.xxx.17 (eth0)
Subnet:255.255.255.252
Gateway:xxx.xxx.xxx.18
Valid static(public) IP set of 2:
IP:xxx.xxx.xxx.147 & 148 (eth1, eth2)
Subnet:255.255.255.240
i want to run xxx.xxx.xxx.147 as a web server & xxx.xxx.xxx.148 as a ftp server. but I'm able to ping only xxx.xxx.xxx.17(WAN IP) from outside world. Can any1 tell me that how can i bring my 147 & 148 IP online without router.
View 6 Replies
View Related
Dec 12, 2010
I was just wondering if there is there is any difference between a $29.95 router and a $109.95 router. Like is a more expensive router more apt to transfer data to my laptop quicker.
View 9 Replies
View Related
Oct 30, 2010
I've moved a linuxbox from being my gateway (nat, etc) to behind a new gateway (a DD-wrt router). For transparency purposes, I'd like to continue using the old box services, and just have the gateway in front of it.
Here's what I did:
The newgateway is setup for class C, 192.168.0.0
This configuration works, but sometimes it doesn't and I haven't figured out why yet.
At sometimes, clients on the LAN get throughput rates with very little speed loss (using speakeasy speed test). They will run at 33M on the LAN, running through both the newgateway, and the oldbox, and get about 35M with directly connected to the cable modem.
Other times, it seems nothing can talk with anyone, and I am not sure why.
I know what I have done is a little unconventional, but it's a transitional thing, and I am not sure it is the cause of the problem, although it was the last things changed.
View 2 Replies
View Related
Aug 1, 2010
My son lost his USB Wireless stick for his Computer. I had thought I heard that if you had a second wireless router, you could use it somehow to detect the wireless router you have already set up in your home (like using a wireless card)? Is this what Ad-Hoc is? Either way, can this be done and if so how? I use a WRT54Gx2 Lynksys router and have a TRENDNET TEW-432BRP wireless router and also a spare D-link DI-514. I use ubuntu 10.04, and also wanted to know if I connected one of the router to his on the LAn port could he connect msaybe through an Ad-Hoc on my local computer here? He uses XP on his. I'm a newbie to linux and networking in general.
View 2 Replies
View Related
Nov 27, 2009
I want to configure linux CentOS 5 as a router using iptable, .Im new in linux so I need the steps to do that
View 5 Replies
View Related
Jun 9, 2010
I moved my server and network equipment, and now the wireless works but I cannot get my server online. I host a website, so this is kind of urgent.
I have a wireless router and can access the internet fine on my laptop. My server is wired & connected to the router. It sets up the networking properly.. ifconfig has an ip address, the default gateway is present. But I cannot ping google, or even the router. It says destination host unreachable.
So I go back to the laptop to check the router settings.. sometimes it likes to assign the server the wrong internal ip. But, I can't access the router settings either! The page (192.168.1.1) times out. Same with trying to ping the router. How can the laptop be online if it can't reach the router?
Oddly, ifconfig on my laptop reports an ip address starting with 99.233. It's always given me an internal address starting with 192.168. What's going on here? Is the router not allocating an internal ip? I use wicd to connect, if it's relevant.
We have a windows laptop that can only get a "local connection". Now it does sound like the router is forwarding directly to my laptop, instead of allocating internal ips.
View 1 Replies
View Related
Mar 18, 2011
I have a SSH server on Ubuntu 10.04 running behind a NAT. I have done the port-forwarding at the router. However say for example I want to restrict people connecting to the SSH server by country IP's. When I configure ufw with the following rule it still lets the IPs that are restricted through. Any idea why
sudo ufw allow from xxx.xxx.xxx.xxx/24 to any port 2556
View 5 Replies
View Related
Jun 7, 2011
My ISP (Cox) is blocking port 80 and I would like to know if there is a way to open it again. I am to taking about 8080, 8000 or 81 I want to use 80 so I can host my website and every one can access it without the need to put [url]:[PORT] at the URL
View 2 Replies
View Related
Jun 8, 2011
I'm trying to install libbz2-dev on my labtop.I'm running Kubuntu 10.04.Some packages could not be installed. This may mean that you have requested an impossible situation or if you are using the unstable distribution that some required packages have not yet been created or been moved out of Incoming.
View 3 Replies
View Related
