Cant SSH into server, not responding

linux ssh iptables raspberry-pi fail2ban
7,926

Tried sudo traceroute -4T -p 22 [ip_address] with specific port and discovered that all packets (not only when trying to ssh into rpi, but also to other servers) with dest port 22 gets stopped at my ISP's gateway. Opened another port for ssh and now everything works like a charm.

Share:
7,926

Related videos on Youtube

Karls
Author by

Karls

Updated on September 18, 2022

Comments

  • Karls
    Karls over 1 year

    Short intro: I have 2 servers. Home server and in remote location Raspberry Pi. Both are running ssh, postfix (rpi as backup), bind (home server for lan only), squid3, fail2ban and other (possibly not so important).

    Both are behind routers with static public IPs. Problem started few days ago with casual connection (ssh) from home network to rpi and connection was unsuccessful (timed out), checked that IP is being resolved properly and tried from phone to connect - worked. Tried to connect to router (WebUI) worked, nothing is being blocked/banned. Tried to connect trough http-proxy (from home to rpi) worked.

    nmap'ing shows that port 22 is being filtered, but doing the same thing from work showed the port is open. From work ssh'ed to home and then tried to ssh into rpi and the same thing.

    Checked iptables on both devices and the IP isn't being blocked.

    I can ssh from rpi to home but not vice versa. tcpdump shows that home is sending packets, but rpi shows that nothing is being received.

    Tried to connect portable PC directly to wall Ethernet outlet, but the same situation.

    rpi:# iptables -S

    -P INPUT ACCEPT
-P FORWARD ACCEPT
-P OUTPUT ACCEPT
-N fail2ban-recidive
-N fail2ban-ssh
-A INPUT -p tcp -j fail2ban-recidive
-A INPUT -p tcp -m multiport --dports 22 -j fail2ban-ssh
-A fail2ban-recidive -j RETURN
-A fail2ban-ssh -s 91.224.161.69/32 -j REJECT --reject-with icmp-port-unreachable
-A fail2ban-ssh -s 85.25.120.207/32 -j REJECT --reject-with icmp-port-unreachable
-A fail2ban-ssh -s 113.21.228.166/32 -j REJECT --reject-with icmp-port-unreachable
-A fail2ban-ssh -s 122.225.243.194/32 -j REJECT --reject-with icmp-port-unreachable
-A fail2ban-ssh -s 183.61.109.240/32 -j REJECT --reject-with icmp-port-unreachable
-A fail2ban-ssh -s 116.31.116.48/32 -j REJECT --reject-with icmp-port-unreachable
-A fail2ban-ssh -j RETURN

    none of the banned IPs are mine.

    Already tried SSH Server Not Responding To Connection Request

    If some logs or tests needed please say!

    Thanks in advance!

Recents

Why Is PNG file with Drop Shadow in Flutter Web App Grainy?
How to troubleshoot crashes detected by Google Play Store for Flutter app
Cupertino DateTime picker interfering with scroll behaviour
Why does awk -F work for most letters, but not for the letter "t"?
Flutter change focus color and icon color but not works
How to print and connect to printer using flutter desktop via usb?
Critical issues have been reported with the following SDK versions: com.google.android.gms:play-services-safetynet:17.0.0
Flutter Dart - get localized country name from country code
navigatorState is null when using pushNamed Navigation onGenerateRoutes of GetMaterialPage
Android Sdk manager not found- Flutter doctor error
Flutter Laravel Push Notification without using any third party like(firebase,onesignal..etc)
How to change the color of ElevatedButton when entering text in TextField

Related

SSH not landing in the home directory
How to forward http request to a proxy server?
iptables restrict ssh session by mac address
iptables NAT doesn't preserve remote IP
SSH Permission denied (publickey) on Raspberry Pi
How do I block every connection except vpn and ssh without endangering the state of my vps?
How to get list banned ip and its unban time in fail2ban on Linux?
Error Putty X11 proxy: Authorisation not recognised
How to find Raspberry Pi on Network
Bluetoothctl connects and disconnects repeatedly