I am trying to set up a small home network. There are two machines, t61 (192.168.10.100) and quad (192.168.10.101), both running SuSE 11. They are connected to a router (Trendnet TEW-639GR, if it matters), which in turn is connected to a cable modem. I modified the /etc/hosts on each, to have the other’s name & IP address. Now:
I can ping each from the other, and get packets.
Both connect to the outside world through the router.
I can ssh to external machines as usual.
However, I can’t get the two machines to ssh to each other. I’ve looked through the ssh_config and sshd_config, and all the default settings look reasonable (though I’m far from being a networking expert). What do I need to do to get these two to talk?
Hi
You need to go to the Firewall settings in YaST and in the ‘allowed
services’ section, select the secure shell server and add to the allowed
firewall services.
well if you can ping each other than what a command like tis will give you:
ssh your_user_id@192.168.1.2 or whatever is your internal ip address of the other machine)
You said that you can ssh to outside of the network.To ssh outside doesn’t mean that you can be ssh’d .So your firewall might be not setup properly. Bring the firewall on the other machine and ssh it. If not successful than verify that ssh listener service is up on the other machine, if successful you know that the firewall is not setup correct to let you ssh. Add ssh service to the list.
here is a good tutorial : Linux HOWTOs and Tutorials: Suse Linux 10.0, 10.1 openSUSE 10.2, 10.3, 11.0, 11.1
good luck!
And a couple more questions, if I may. First, are there any more services that I should allow? Essentially I expect to be doing only a few things with this network. First, I do most of my work on t61 (which is a laptop), and will use quad’s much larger disk to back up my working files and do occasional tests on larger problems, so will mostly copy files, eventually moving to an automated rsync/unison setup. Also, I’ll sometimes be running MPI parallel programs using the two machines.
Second, the router has a built-in firewall. Is there any advantage to not running firewalls on the machines, and letting the router take care of the interface to the external world? No one else uses my machines, and they’re always turned off when I’m away from home.
I don’t run a firewall on my internal machines because I’m always playing around with network services. You’ll probably be fine, but it’s up to you. It’s a good learning exercise though to narrow down the ports to only those needed; if you are doing any enterprise work, the experience with firewall config will stand you in good stead.