Hello sorry for the boring questions, about connection to a vserver via
ssh,
but i am working on it for more than one week and it won't be work.
Maybe someone can help me.
My system:
P4 3GHz
2000 MB RAM
Kernel 2.6.14.3-vs2.1.0-rc10
util-vserver-0.30.209
two NICs eth0 connected to the internet, it is a dedicated server, also
there is a NIC eth1,
without connection throught the net, but I though I use this for my
local network, and performed
vserver vhost00 build -m skeleton --hostname vhost00.(here my
domainname) --netdev eth1 --interface v00=192.168.1.110/24 --context 50
after that I tarballed a preconfigured system sarge stable!
Installation and all others works fine I have access to the vserver,
also have connection to the internet with, I can perform apt-get update,
also ssh and xinetd installation works fine.
Accessing vserver with ssh from the host system also works fine.
configured the sshd on the vserver to the local ip 192.168.1.110, on
port 22 also on port 2222
Using OpenSSH_3.8.1 on the host and also on the vserver, set the
ListenAdress on the host as mentioned to my host ip on port 22, I also
tried it on port 2222
alias device is shown and all seems to be ok
have installed Shorewall firewall, configured
won't work, maybe here is the problem, or I have problem to configure my
"Local Network", is it possible to use the onboard NIC without
connection to the network as device for my Local network?
here are my conf files maybe it will give further informations
interfaces:
loc eth1 detect routefilter,tcpflags
net eth0 detect dhcp,routefilter,tcpflags
masq:
eth0:"my host ip" eth1
eth1:v00 eth1!85.214.22.240 192.168.1.110
nat:
"my host ip" eth1 192.168.1.110 no no
policy:
all all ACCEPT
net $FW ACCEPT info
$FW net ACCEPT info
loc $FW ACCEPT
$FW loc ACCEPT
loc net ACCEPT
net loc ACCEPT
routestopped:
eth0 "my host ip"
eth1
rules:
##############################################################################
#ACTION SOURCE DEST PROTO DEST SOURCE
ORIGINAL
# PORT PORT(S)
DEST
#
# Accept DNS connections from the firewall to the network
#
ACCEPT fw net tcp 53
ACCEPT fw net udp 53
ACCEPT net fw tcp 53
ACCEPT net fw udp 53
# Accept SSH connections from the firewall to the network
ACCEPT fw net tcp 22
ACCEPT fw net udp 22
ACCEPT net fw tcp 22 # Ausgang zu
anderen Rechnern
ACCEPT net fw:192.168.1.110 tcp 22
ACCEPT net loc:192.168.1.110 tcp 22
DNAT net loc:192.168.1.110 tcp 22 22 "my host ip"
85.214.22.240
# Accept Webmin connections from the firewall to the network
ACCEPT fw net tcp 777
ACCEPT fw net udp 777
ACCEPT net fw tcp 777
# Accept FTP connections from the firewall to the network
ACCEPT fw net tcp 21
ACCEPT fw net udp 21
ACCEPT net fw tcp 21
ACCEPT net fw udp 21
#
# Accept SSH connections from the local network for administration
#
#ACCEPT net fw tcp 22
# Allow Ping To And From Firewall
#
ACCEPT loc fw icmp 8
ACCEPT net fw icmp 8
ACCEPT fw loc icmp 8
ACCEPT fw net icmp 8
ACCEPT loc fw udp 53
ACCEPT loc fw tcp 80
zones:
loc Local Local Internet
net Net Internet
won't work, maybe here is the problem, or I have problem to configure my
"Local Network", is it possible to use the onboard NIC without
connection to the network as device for my Local network?
also tried
inetd/xinetd
You can't bind inetd to a interface, replace it with xinetd.
config file: xinetd.conf
defaults
{
bind = "my host ip"
}
also tried to make the host interface and IP available in a vserver
http://deb.riseup.net/vserver/usage/.
maybe someone can give me more informations how to access my vservers.
Greetinx and thanx for ur help!
Stefan
_______________________________________________
Vserver mailing list
Vserver@list.linux-vserver.org
http://list.linux-vserver.org/mailman/listinfo/vserver
Received on Fri Jan 6 14:14:37 2006