RE: connection refused

Lee Allen Wed, 11 Sep 2002 09:15:24 -0700

'closing ports', when used in the context of security, means two things:
1) shutting down or restricting services, as you described
2) preventing your firewall from allowing outside access to those ports


Lee Allen
Leadtec Systems, a division of CGS 

> -----Original Message-----
> From: [EMAIL PROTECTED] 
> [mailto:[EMAIL PROTECTED]] On Behalf Of ad
> Sent: Wednesday, September 11, 2002 12:09 PM
> To: [EMAIL PROTECTED]
> Subject: RE: connection refused
> 
> 
> Thank you everyone for your help.
> 
> I, a novice, successfully connected to the VNC server!
> Yeah!
> 
> As suggested it was a security issue. I checked my 
> /etc/hosts.allow and /etc/hosts.deny settings and found that 
> the settings were wrong.
> 
> Your advice helped me focus my investigation.  
> Now on to Samba.
> 
> May I ask an additional very novice question? There
> are many remarks regarding opening and closing ports. 
> Is this accomplished by only settings in the
> /etc/hosts.allow and /etc/hosts.deny files and
> shutting down unnecessary daemons/services?   (We have
> a separate router that is acting as a Firewall.)
> 
> Thanks again.
> 
> 
> --- "Beerse,_Corn&#12539;#34;
> <[EMAIL PROTECTED]> wrote:
> > > -----Original Message-----
> > > From: ad [mailto:[EMAIL PROTECTED]]
> > > Seth and Steve, thank you so much for your advice.
> >  We
> > > still havent been able to connect to the Linux
> > VNC
> > > server from our Win client.   When attempting to
> > > connect, I spcified the IP address of the Linux
> > > server in our LAN (e.g., 192.168.0.10:1), but the
> > > dialog box still just disappears.
> > 
> > Does the box disappear before or after the password
> > question? If after the
> > question, it is an vnc issue (like badd password or
> > such) If it is before
> > the question, try the telnet trick: `telnet linuxbox
> > 5901`.
> > 
> > Have  you tried to get access from the console
> > (:0.0) to the local Xvnc
> > (like `vncviewer :1` or `telnet localhost 5901`)? If
> > this gives proper
> > results and remote connections don't, it's the
> > security settings in your
> > linux box that trouble you.
> > 
> > Try to find the firewall and security settings in
> > your distro and open port
> > 5901 for remote access.
> > 
> > > 
> > > As suggested, I downloaded Ethereal and captured
> > the
> > > network messages and have made sure that the
> > > /etc/hosts file in the Linux has the IP address
> > and
> > > name of the Win Client.  I couldnt find anything
> > out
> > > of the ordinary (of course I am not exactly sure
> > what
> > > to look for).  The captures did not look
> > significantly
> > > different from the log of the successful attempt
> > to
> > > connect to another Win2K Vnc Server, except that
> > the
> > > captures for the attempt to connect to the Linux
> > VNC
> > > server were cut off short.    Again the Linux VNC
> > > server logs (/home/user/.vnc/hostname) show
> > Refused
> > > connection from client.
> > 
> > This can still be a security issue. Are both
> > machines in the same IP domain
> > (same netmask, similar IP address).
> > 
> > > 
> > > I would appreciate any advice.  What appears to be
> > > wrong?  The DNS server settings?, Access
> > permissions?.
> > >  Also, would any of the followings be the source
> > of
> > > the problem?
> > 
> > I don't think the network is an issue here: The
> > viewer machine gets at the
> > server machine since it appears in the log.
> > 
> > > 
> > 
> > Best to start at the firewall settings.
> > 
> > > 1./etc/hosts.allow and /etc/hosts.deny settings
> > (of
> > > the Linux box)
> > > 2./etc/hosts settings (of the Linux box)
> > > 3.PAM auth.  (of  the Linux box)
> > > 4.DNS (ours is on a Win2K machine)
> > > 5.router settings
> > > 
> > > Also, this may or may not be relevant, but we are
> > > having trouble with our Samba connection to the
> > Linux
> > > machine.  Although we can see the Linux
> > files/folders,
> > > we cannot copy files into the Linux folders from a
> > > Windows machines, although we are asked for user
> > and
> > > passwords (we can do the reverse copy).
> > 
> > I bet if you solve one, you solve the other.
> > 
> > 
> > CBee
> > _______________________________________________
> > VNC-List mailing list
> > [EMAIL PROTECTED] 
> http://www.realvnc.com/mailman/listinfo/vnc-> list
> 
> 
> 
> __________________________________________________
> 
> Yahoo! - We Remember
> 9-11: A tribute to the more than 3,000 lives lost 
http://dir.remember.yahoo.com/tribute
_______________________________________________
VNC-List mailing list
[EMAIL PROTECTED] http://www.realvnc.com/mailman/listinfo/vnc-list
_______________________________________________
VNC-List mailing list
[EMAIL PROTECTED]
http://www.realvnc.com/mailman/listinfo/vnc-list

RE: connection refused

Reply via email to