SSH and media wiki not connecting from outside of my LAN

ahronzombi · 2009-08-30 02:34:42

I cant seem to connect to ssh or my mediawiki server from outside of my LAN. Ive forwarded all the needed ports and been going over my config all night. I also made sure my router wasn't blocking anything.

-ssh tells me connection denied
-when i go to my http server i can list directorys but as soon as i try to load media wiki i get a 502 error

*these problems do not happen if im connecting from another machine in my local LAN

This is my sshd_config

#    $OpenBSD: ssh_config,v 1.25 2009/02/17 01:28:32 djm Exp $

# This is the ssh client system-wide configuration file.  See
# ssh_config(5) for more information.  This file provides defaults for
# users, and the values can be changed in per-user configuration files
# or on the command line.

# Configuration data is parsed as follows:
#  1. command line options
#  2. user-specific file
#  3. system-wide file
# Any configuration value is only changed the first time it is set.
# Thus, host-specific definitions should be at the beginning of the
# configuration file, and defaults at the end.

# Site-wide defaults for some commonly used options.  For a comprehensive
# list of available options, their meanings and defaults, please see the
# ssh_config(5) man page.

#Host *
#   ForwardAgent no
#   ForwardX11 yes
#   RhostsRSAAuthentication no
#   RSAAuthentication yes
#   PasswordAuthentication yes
#HostbasedAuthentication yes
#   GSSAPIAuthentication no
#   GSSAPIDelegateCredentials no
#   BatchMode no
#   CheckHostIP yes
#AddressFamily any
#   ConnectTimeout 0
#   StrictHostKeyChecking ask
#   IdentityFile ~/.ssh/identity
#   IdentityFile ~/.ssh/id_rsa
#   IdentityFile ~/.ssh/id_dsa
#Port 22
Protocol 2
#   Cipher 3des
#   Ciphers aes128-ctr,aes192-ctr,aes256-ctr,arcfour256,arcfour128,aes128-cbc,3des-cbc
#   MACs hmac-md5,hmac-sha1,umac-64@openssh.com,hmac-ripemd160
#   EscapeChar ~
#   Tunnel yes
#   TunnelDevice any:any
#   PermitLocalCommand no
#   VisualHostKey no
#RSAAuthentication yes
#PubkeyAuthentication yes
#HostbasedAuthentication no
#PasswordAuthentication no
#HashKnownHosts yes
#StrictHostKeyChecking ask
#LoginGraceTime 120
#PermitRootLogin no # (put yes here if you want root login)

hosts.deny

##
# /etc/hosts.allow
#
sshd: ALL
mysqld: ALL
# End of file

# /etc/hosts.deny
#

ALL: ALL: DENY

# End of file

hosts.allow

# /etc/hosts.allow
#
sshd: ALL
mysqld: ALL
# End of file

I feel like its a security policy or something im not catching.
Ive been searching and working to fix this all night to no avail.
Thanks ahead of time for any help.

neddie_seagoon · 2009-08-30 05:37:08

Do you have any iptables rules that may be affecting the inbound connections?

djszapi · 2009-08-30 11:09:34

Hello ahronzombi!

Do you try it with apache web server ? If yes, is there any related information in the apache.log when someone try to connect from out. What's in your http server related config files, vhosts, etc?

Garns · 2009-08-30 14:45:09

Is that really your sshd_config, because it looks pretty much like ssh_config.

ahronzombi · 2009-08-30 15:01:15

neddie_seagoon wrote:

Do you have any iptables rules that may be affecting the inbound connections?

unless arch 64 comes with iptables rules i do not. i have never tried to set any up

ahronzombi · 2009-08-30 15:01:46

Garns wrote:

Is that really your sshd_config, because it looks pretty much like ssh_config.

It may be ill look into that
thanks allot man

ahronzombi · 2009-08-30 15:03:30

djszapi wrote:

Hello ahronzombi!
Do you try it with apache web server ? If yes, is there any related information in the apache.log when someone try to connect from out. What's in your http server related config files, vhosts, etc?

Ill try that today. i tried something similar with sshd and looked at the verbose output of the program when trying to connect remotely. it was never touched, like no one tried to connect. i feel like its a network security issue since i can connect locally. but ill check these logs as well

ahronzombi · 2009-08-30 15:23:44

ok ssh works after a pacman update and a reboot. must have been a pkg bug or user error. but mediawiki still gives a 502 error. ill check my logs

ahronzombi · 2009-08-30 15:28:45

djszapi wrote:

Hello ahronzombi!
Do you try it with apache web server ? If yes, is there any related information in the apache.log when someone try to connect from out. What's in your http server related config files, vhosts, etc?

Where is apache.log , i cant find it in /var/logs/httpd

Arch Linux

#1 2009-08-30 02:34:42

SSH and media wiki not connecting from outside of my LAN

#2 2009-08-30 05:37:08

Re: SSH and media wiki not connecting from outside of my LAN

#3 2009-08-30 11:09:34

Re: SSH and media wiki not connecting from outside of my LAN

#4 2009-08-30 14:45:09

Re: SSH and media wiki not connecting from outside of my LAN

#5 2009-08-30 15:01:15

Re: SSH and media wiki not connecting from outside of my LAN

#6 2009-08-30 15:01:46

Re: SSH and media wiki not connecting from outside of my LAN

#7 2009-08-30 15:03:30

Re: SSH and media wiki not connecting from outside of my LAN

#8 2009-08-30 15:23:44

Re: SSH and media wiki not connecting from outside of my LAN

#9 2009-08-30 15:28:45

Re: SSH and media wiki not connecting from outside of my LAN

Board footer