Bug 41854
Summary: | rsh client hangs/poll: protocol failure in circuit setup | ||
---|---|---|---|
Product: | [Retired] Red Hat Linux | Reporter: | Dave Cordner <d.e.cordner> |
Component: | rsh | Assignee: | Phil Knirsch <pknirsch> |
Status: | CLOSED NOTABUG | QA Contact: | David Lawrence <dkl> |
Severity: | medium | Docs Contact: | |
Priority: | medium | ||
Version: | 7.1 | CC: | rvokal |
Target Milestone: | --- | ||
Target Release: | --- | ||
Hardware: | i686 | ||
OS: | Linux | ||
Whiteboard: | |||
Fixed In Version: | Doc Type: | Bug Fix | |
Doc Text: | Story Points: | --- | |
Clone Of: | Environment: | ||
Last Closed: | 2001-05-23 15:12:39 UTC | Type: | --- |
Regression: | --- | Mount Type: | --- |
Documentation: | --- | CRM: | |
Verified Versions: | Category: | --- | |
oVirt Team: | --- | RHEL 7.3 requirements from Atomic Host: | |
Cloudforms Team: | --- | Target Upstream Version: | |
Embargoed: |
Description
Dave Cordner
2001-05-22 16:12:20 UTC
Interessting problem, i suspect it has something to do with the ipchains rules... As we don't have any Solaris or AIX machines around here it would be a big help if you could reproduce this problem in a Linux-only environment so that i can reproduce it locally here. If this is not an option it would help a lot if you could send me the ipchains rules of the client machine and maybe the tcpdump output when you run rsh. Thanks in advance for all additional info, Read ya, Phil You were right. I didn't have my rules for my servers high enough on the chain. The packets I was getting were icmp, the general rule to reject innitiation of tcp <1024 refused the tcp connections. When I placed my rules higher in the chain, the tcp packets got through. rcp worked just fine because it does all of its work over one tcp connection which is innitiated from my workstation. rsh on the other hand requires two connections... one for data and one for control. The first connection for the rsh client is set up by my workstation. The SERVER then tries to innitiate the second connection to send the data, but is promptly rejected by the medium security firewall rules. This is certainly not an rsh bug. The rsh client (not the server) might be something that is added to the optional services that are allowed when setting up the medium security. The RedHat installation procedure already has options for exceptions like ssh, X, http, etc. Im not sure if rsh is the only command that uses 1022 though so it might not be a good idea. Sorry to bother you. Dave Hi Dave! I'm closing this as NOTABUG then as this has been more of a setup problem, ok? Thanks for reporting, Read ya, Phil |