SSH hanging

Didier Rwitura drwitura at primus.ca
Fri Mar 25 16:25:52 PST 2005


I am installing PF 

I added in

/etc/sysctl.com ---> net.inet.ip.forwarding=1 

/etc/shell  ---> /usr/sbin/authpf

/etc/pf.conf 

Int= "xl0"
Ext  = "sis0"

scrub in all

# filter
block drop all

pass out quick on $Ext proto tcp from $Int:network flags S/SA \
   modulate state
pass out quick on $Ext proto { udp, icmp } from $Int:network \
   keep state

pass in quick on $Intproto tcp from $Int:network to $Int\
   port ssh flags S/SA keep state

anchor "authpf/*" in on $Int



/etc/authpf/authpf.rules

Int = "xl0"
dns_servers = "{ 10.0.0.33, 66.11.168.194 }"

pass in quick on $Int proto udp from $user_ip to $dns_servers \
   port domain keep state
pass in quick on $Int proto tcp from $user_ip to port { ssh, http, \
   https } flags S/SA keep state



I am getting 

Hello didier, You are authenticated from host "10.0.0.33"

when I connect with ssh but it hangs ... I don't get the prompt

any help will be appreciated


Thanx


-- 


------------------------------------------
Didier Rwitura <drwitura at primustel.ca>
Technical Support Technique
Primus Telecommunications Inc


Tel: 1-800-370-0015   Residential
     1-888-222-8577   Commercial
             Ext :8628
"injustice anywhere is a threat to justice everywhere" 
Martin Luther King Jr 



-- 
----------------------------------------------------------------------------
This electronic message contains information from Primus Telecommunications
Canada Inc. ("PRIMUS") , which may be legally privileged and confidential.
The information is intended to be for the use of the individual(s) or entity
named above. If you are not the intended recipient, be aware that any
disclosure, copying, distribution or use of the contents of this information
is prohibited. If you have received this electronic message in error, please
notify us by telephone or e-mail (to the number or address above)
immediately. Any views, opinions or advice expressed in this electronic
message are not necessarily the views, opinions or advice of PRIMUS.
It is the responsibility of the recipient to ensure that
any attachments are virus free and PRIMUS bears no responsibility
for any loss or damage arising in any way from the use
thereof.The term "PRIMUS" includes its affiliates.
----------------------------------------------------------------------------
Pour la version en français de ce message, veuillez voir
 http://www.primustel.ca/fr/legal/cs.htm
----------------------------------------------------------------------------



More information about the freebsd-pf mailing list