Is fail2ban in the latest IOT distribution?
22 views
Skip to first unread message
Chris Green
Feb 10, 2019, 4:16:28 AM2/10/19
to beagl...@googlegroups.com
A friend is having trouble with remote logins to a BBG, the symptoms
look a *bit* like what fail2ban would do after failures. Is fail2ban
in the standard IOT distribution now?
--
Chris Green
·
look a *bit* like what fail2ban would do after failures. Is fail2ban
in the standard IOT distribution now?
--
Chris Green
·
Robert Nelson
Feb 10, 2019, 1:45:43 PM2/10/19
to Beagle Board, Chris Green
On Sun, Feb 10, 2019 at 3:16 AM Chris Green <c...@isbd.net> wrote:
>
> A friend is having trouble with remote logins to a BBG, the symptoms
> look a *bit* like what fail2ban would do after failures. Is fail2ban
> in the standard IOT distribution now?
Nope, not by default.
>
> A friend is having trouble with remote logins to a BBG, the symptoms
> look a *bit* like what fail2ban would do after failures. Is fail2ban
> in the standard IOT distribution now?
Regards,
--
Robert Nelson
https://rcn-ee.com/
Chris Green
Feb 10, 2019, 4:16:25 PM2/10/19
to beagl...@googlegroups.com
Robert Nelson <robert...@gmail.com> wrote:
> On Sun, Feb 10, 2019 at 3:16 AM Chris Green <c...@isbd.net> wrote:
> >
> > A friend is having trouble with remote logins to a BBG, the symptoms
> > look a *bit* like what fail2ban would do after failures. Is fail2ban
> > in the standard IOT distribution now?
>
> Nope, not by default.
>
OK, thanks Robert, we'll try looking elsewhere. It's a strange
> On Sun, Feb 10, 2019 at 3:16 AM Chris Green <c...@isbd.net> wrote:
> >
> > A friend is having trouble with remote logins to a BBG, the symptoms
> > look a *bit* like what fail2ban would do after failures. Is fail2ban
> > in the standard IOT distribution now?
>
> Nope, not by default.
>
problem where the first remote login is fine but then ssh refuses to
work. Local across the LAN ssh always works!
--
Chris Green
·
Dan Hammans
Feb 11, 2019, 2:17:14 AM2/11/19
to beagl...@googlegroups.com
What does /var/log/auth.log say on subsequent login attempts? That does sound odd.
You could also run tcpdump to at least get an idea if it’s being refused outright vs more of a ssh protocol problem.
--
For more options, visit http://beagleboard.org/discuss
---
You received this message because you are subscribed to the Google Groups "BeagleBoard" group.
To unsubscribe from this group and stop receiving emails from it, send an email to beagleboard...@googlegroups.com.
To view this discussion on the web visit https://groups.google.com/d/msgid/beagleboard/6pg6jf-uec.ln1%40esprimo.zbmc.eu.
For more options, visit https://groups.google.com/d/optout.
Chris Green
Feb 11, 2019, 4:16:29 AM2/11/19
to beagl...@googlegroups.com
Dan Hammans <dan.h...@gmail.com> wrote:
> [-- text/plain, encoding quoted-printable, charset: UTF-8, 52 lines --]
a virtual server so that he (my friend) can connect out and then back
in when he's actually on site with the BBG in question.
> You could also run tcpdump to at least get an idea if it’s being refused
> outright vs more of a ssh protocol problem.
>
OK, thanks.
It is a very odd problem, I have loads of ssh logins on BBBs,
Raspberry Pis and other systems many of which are remote behind NAT
routers and I've never seen an issue like this. What happens is that
local (across the LAN) logins always work and the *first* remote
login (through the NAT router's port mapping) works but subsequent
remote logins fail.
As I said we've just set things up so we can do 'remote' logins from
the site where the system is, that should let us diagnose what's
happening.
--
Chris Green
·
> [-- text/plain, encoding quoted-printable, charset: UTF-8, 52 lines --]
>
> What does /var/log/auth.log say on subsequent login attempts? That does
> sound odd.
>
That's our next port of call. I've only just set up an ssh account on
> What does /var/log/auth.log say on subsequent login attempts? That does
> sound odd.
>
a virtual server so that he (my friend) can connect out and then back
in when he's actually on site with the BBG in question.
> You could also run tcpdump to at least get an idea if it’s being refused
> outright vs more of a ssh protocol problem.
>
It is a very odd problem, I have loads of ssh logins on BBBs,
Raspberry Pis and other systems many of which are remote behind NAT
routers and I've never seen an issue like this. What happens is that
local (across the LAN) logins always work and the *first* remote
login (through the NAT router's port mapping) works but subsequent
remote logins fail.
As I said we've just set things up so we can do 'remote' logins from
the site where the system is, that should let us diagnose what's
happening.
--
Chris Green
·
Reply all
Reply to author
Forward
0 new messages