Even though 10.7.2 Lion's Network Utility says port 22 is open on my Snow Leopard machine, I can't ssh to that machine, and I can't even ping it. Why would that be? Any suggestions?
iMac Intel, Mac OS X (10.6.2)
Firewall on?
Firewall is OFF on both machines.
Did you double check that it's enabled under System Preferences? I know it seems redundant, but it wouldn't hurt to check. Maybe disable and reinable that service?
You've been able to connect before?
Boot the server in safe mode and try again to ping it. If you can't, then something is wrong with your network, or with the OS installation on either the server or the client.
I did double-check, and I did try turning off file sharing and remote login, but it didn't help.
I'll try that and let you know. The puzzling thing is that at one time or another in the past couple of days, I was able to ssh from SNL to Lion or from Lion to SNL, but nver both at the same time.
I normally use RBrowser to do this, but today I've been using Terminal with no success, and I've tried using Network Utility for pinging and checking for open ports. I'm not able to ping one machine from the other, and although Lion sees an open port 22 on the SNL machine, I can't ssh in that direction.
What do you mean by "can't". Does it hang up? Does it freeze your machine? Does it silently do nothing and return to a terminal prompt? Does it print a descriptive error message? What happens when you add "-v -v" to the ssh command?
Linc suggested: "Boot the server in safe mode and try again to ping it. If you can't, then something is wrong with your network, or with the OS installation on either the server or the client."
I tried safe mode on the server, but it disabled all network connections. I also tried booting from an external drive, repairing the internal HD, and repairing permissions. One of the permissions repaired was an ACL involving ssl-config. But none of this helped.
I ought to add that these machines are connected in a wireless network run by an AEBS. It worked before; just not today.
Please read this whole message before doing anything.
This procedure is a diagnostic test. It won’t solve your problem. Don’t be disappointed when you find that nothing has changed after you complete it.
Third-party system modifications are a common cause of usability problems. By a “system modification,” I mean software that affects the operation of other software -- potentially for the worse. The following procedure will help identify which such modifications you've installed. Don’t be alarmed by the complexity of these instructions -- they’re easy to carry out and won’t change anything on your Mac.
These steps are to be taken while booted in “normal” mode, not in safe mode. If you’re now running in safe mode, reboot as usual before continuing.
Below are several lines of text in monospaced type, which are UNIX shell commands. They’re harmless, but they must be entered exactly as given in order to work. If you have doubts about the safety of running these commands, search this site for other discussions in which they’ve been used without any report of ill effects.
Some of the commands will line-wrap or scroll in your browser, but each one is really just a single line, all of which must be selected. You can accomplish this easily by triple-clicking anywhere in the line. The whole line will highlight, and you can then either copy or drag it. The headings “Step 1” and so on are not part of the commands.
Note: If you have more than one user account, Step 2 must be taken as an administrator. Ordinarily that would be the user created automatically when you booted the system for the first time. The other steps should be taken as the user who has the problem, if different. Most personal Macs have only one user, and in that case this paragraph doesn’t apply.
To begin, launch the Terminal application; e.g., by entering the first few letters of its name in a Spotlight search. A text window will open with a line already in it, ending either in a dollar sign (“$”) or a percent sign (“%”). If you get the percent sign, enter “sh” (without the quotes) and press return. You should then get a new line ending in a dollar sign.
Step 1
Copy or drag -- do not type -- the line below into the Terminal window, then press return:
kextstat -kl | awk '!/com\.apple/ {print $6 $7}'Post the lines of output (if any) that appear below what you just entered (the text, please, not a screenshot.)
Step 2
Repeat with this line:
sudo launchctl list | sed 1d | awk '!/0x|com\.apple/ {print $3}'This time, you'll be prompted for your login password, which won't be displayed when you type it. You may get a one-time warning not to screw up. You don't need to post the warning.
Step 3
launchctl list | sed 1d | awk '!/0x|com\.apple/ {print $3}'Step 4
ls -1A /e*/mach* {,/}L*/{Ad,Compon,Ex,Fram,In,Keyb,La,Mail/**,P*P,Priv,Qu,Scripti,Servi,Sta}* L*/Fonts 2> /dev/nullImportant: If you synchronize with a MobileMe account, your me.com email address may appear in the output of the above command. If so, change it to something like “user@me.com” before posting.
Step 5
osascript -e 'tell application "System Events" to get the name of every login item'Remember, steps 1-5 are all drag-and-drop or copy-and-paste, whichever you prefer -- no typing, except your password.
You can then quit Terminal.
Sorting out this kind of problem is a process of elimination that is best started from the machine in question.
Do you have physical access to the SL box? If you do, start looking at the problem by logging into the box locally and opening up a Terminal window.
Can you ssh to localhost? If ssh localhost works, then there is likely to a problem with the network or a firewall is in the way, or perhaps the hostname or ip address of your SL is different from what you think it is.
If you can't ssh to localhost, then you should run netstat -an to see if something is listening on port 22. Start the ssh server if not, check if another process has grabbed port 22 if it is listening but not responding to an incoming ssh connection. Follow the diagnostics that have already been suggested earlier to see if there is a reason why the ssh server is not starting.
Make sure the SL box is working before you start investigating the network or the Lion box.
Step 1:
iMac5:~ guppy$ kextstat -kl | awk '!/com\.apple/ {print $6 $7}'
com.intego.kext.VirusBarrierKPI(10.6.15)
com.intego.kext.VirusBarrier.AppBarrierKPI(10.6.15)
com.intego.iokit.VBX6NKE(8)
com.bresink.driver.BRESINKx86Monitoring(5.0)
Step2:
iMac5:~ sysadmin$ sudo launchctl list | sed 1d | awk '!/0x|com\.apple/ {print $3}'
Password:
com.openssh.sshd
com.intego.VirusBarrier.antivandal.hks
org.x.privileged_startx
org.postfix.master
org.ntp.ntpd
org.cups.cupsd
com.vix.cron
org.glimmerblocker.proxy
com.intego.VirusBarrierX6.scanner.daemon
com.intego.VirusBarrierX6.daemon
com.intego.task.manager.daemon
com.intego.netupdate.daemon
com.intego.commonservices.icalserver
com.intego.commonservices.daemon
com.google.keystone.daemon
com.bresink.system.securityagent3
com.bresink.system.securityagent
com.barebones.textwrangler
com.atomicbird.macaroniTool
Step 3:
iMac5:~ guppy$ launchctl list | sed 1d | awk '!/0x|com\.apple/ {print $3}'
org.x.startx
org.openbsd.ssh-agent
org.glimmerblocker.updater
com.intego.VirusBarrierX6.statusitem
com.intego.VirusBarrierX6.alert
com.intego.task.manager.notifier
com.intego.netupdate.agent
com.intego.commonservices.statusitem
com.google.keystone.root.agent
com.adobe.ARM.202f4087f2bbde52e3ac2df389f53a4f123223c9cc56a8fd83a6f7ae
org.gpgtools.macgpg2.gpg-agent
Step 4:
iMac5:~ guppy$ ls -1A /e*/mach* {,/}L*/{Ad,Compon,Ex,Fram,In,Keyb,La,Mail/**,P*P,Priv,Qu,Scripti,Servi,Sta}* L*/Fonts 2> /dev/null
/Library/Components:
/Library/Extensions:
PGPdiskDriver.kext
/Library/Frameworks:
.DS_Store
AEProfiling.framework
AERegistration.framework
ArcCon.framework
AudioMixEngine.framework
EDWOCommon.framework
EDWOInternet.framework
Headers
IntegoiCalFramework.framework
KodakCMS.framework
MacOSX_USMLib.framework
MicrotekEssentialServices.framework
MicrotekImageProcessor.framework
MicrotekScanWizardPro.framework
MicrotekUserInterfaceSupport.framework
MicrotekUtilities.framework
NetUpdateShared.framework
NyxAudioAnalysis.framework
PGP.framework
PGPclient.framework
PGPui.framework
PluginManager.framework
Resources
SEGlue.framework
SMKAudioFoundation.framework
SMKAudioUnit.framework
SMKAudioUnitKit.framework
SMKAudioUnitWrappers.framework
SMKCoreAdditions.framework
SMKExtensions.framework
SMKGLKit.framework
SMKSpectrumPlayer.framework
StuffIt.framework
TSLicense.framework
USMFramework.framework
WBHomeScreen.framework
WBMediaProvider.framework
/Library/Input Methods:
/Library/InputManagers:
Smart Crash Reports
/Library/Intego:
.virusbarrier_info
IMailSenderTool
IntegoStatusItem.bundle
IntegoiCalServer
MIME.plist
TaskManager
integod
netupdated.bundle
virusbarrier.bundle
/Library/Internet Plug-Ins:
AdobePDFViewer.plugin
CANONiMAGEGATEWAYDL.plugin
DRM Plugin.bundle
Disabled Plug-Ins
Flash Player.plugin
Flip4Mac WMV Plugin.plugin
JavaAppletPlugin.plugin
NPSVG3.zip
NPSVG3Carbon
NPSVG3ReadMe.html
OfficeLiveBrowserPlugin.plugin
Quartz Composer.webplugin
QuickTime Plugin.plugin
Silverlight.plugin
flashplayer.xpt
iPhotoPhotocast.plugin
nsIQTScriptablePlugin.xpt
/Library/Keyboard Layouts:
/Library/LaunchAgents:
com.google.keystone.agent.plist
com.intego.VirusBarrierX6.alert.plist
com.intego.VirusBarrierX6.statusitem.plist
com.intego.commonservices.statusitem.plist
com.intego.netupdate.agent.plist
com.intego.task.manager.notifier.plist
org.glimmerblocker.updater.plist
org.gpgtools.macgpg2.gpg-agent.plist
/Library/LaunchDaemons:
com.apple.remotepairtool.plist
com.atomicbird.macaroni.launchd.plist
com.barebones.textwrangler.plist
com.bresink.system.securityagent.plist
com.bresink.system.securityagent3.plist
com.google.keystone.daemon.plist
com.intego.VirusBarrierX6.daemon.plist
com.intego.VirusBarrierX6.scanner.daemon.plist
com.intego.commonservices.daemon.plist
com.intego.commonservices.icalserver.plist
com.intego.netupdate.daemon.plist
com.intego.task.manager.daemon.plist
org.glimmerblocker.proxy.plist
/Library/PreferencePanes:
Flash Player.prefPane
Flip4Mac WMV.prefPane
GlimmerBlocker.prefPane
Macaroni.prefPane
MenuMeters.prefPane
NetUpdate.prefPane
/Library/PrivilegedHelperTools:
NetUpdateAgent.app
com.barebones.textwrangler
com.bresink.system.securityagent
com.bresink.system.securityagent3
/Library/QuickLook:
GBQLGenerator.qlgenerator
iWork.qlgenerator
/Library/QuickTime:
AppleIntermediateCodec.component
AppleMPEG2Codec.component
CanonMJPEGAVI.component
CanonMJPEGAVIDec.component
CanonText.component
Flip4Mac WMV Advanced.component
Flip4Mac WMV Export.component
Flip4Mac WMV Import.component
/Library/ScriptingAdditions:
Adobe Unit Types
/Library/Services:
GPGServices.service
VirusBarrier X6 Service.service
/Library/StartupItems:
BRESINKx86Monitoring
TinkerToolSystem
/etc/mach_init.d:
/etc/mach_init_per_login_session.d:
/etc/mach_init_per_user.d:
Library/Address Book Plug-Ins:
Library/Fonts:
Abadi MT Condensed Extra Bold
Abadi MT Condensed Light
Andale Mono
Arial
Arial Black
Arial Narrow
Arial Rounded Bold
Baskerville Old Face
Batang.ttf
Bell MT
Bernard MT Condensed
Book Antiqua
Bookman Old Style
Braggadocio
Britannic Bold
Brush Script
Calisto MT
Century
Century Gothic
Century Schoolbook
Colonna
Comic Sans MS
Cooper Black
Copperplate Gothic Bold
Copperplate Gothic Light
Curlz MT
Desdemona
Edwardian Script ITC
Engravers MT
Eurostile
Footlight Light
Garamond
Georgia
Gill Sans Ultra Bold
Gloucester MT Extra Condensed
Goudy Old Style
Gulim.ttf
Haettenschweiler
Harrington
Impact
Imprint MT Shadow
Kino
Lucida Blackletter
Lucida Bright
Lucida Calligraphy
Lucida Fax
Lucida Handwriting
Lucida Sans
Lucida Sans Typewriter
MMCenturyOld
MMGreek
MMTextBook
MMTimes
MMa MathMagic Fonts
MMaCentury-Bold.otf
MMaCentury-BoldItalic.otf
MMaCentury-Italic.otf
MMaCentury-Regular.otf
MMaGreek-Bold.otf
MMaGreek-BoldItalic.otf
MMaGreek-Italic.otf
MMaGreek-Regular.otf
MMaTextBook-Bold.otf
MMaTextBook-BoldItalic.otf
MMaTextBook-Italic.otf
MMaTextBook-Regular.otf
MS Gothic.ttf
MS Mincho.ttf
MS PGothic.ttf
MS PMincho.ttf
MathMagic Fonts
Matura Script Capitals
Mistral
Modern No. 20
Monotype Corsiva
Monotype Sorts
News Gothic MT
Onyx
PMingLiU.ttf
Perpetua Titling MT
Playbill
Rockwell
Rockwell Extra Bold
SimSun.ttf
Stencil
Tahoma
Times New Roman
Trebuchet MS
Verdana
Wide Latin
Wingdings
Wingdings 2
Wingdings 3
encodings.dir
fonts.dir
fonts.list
fonts.scale
Library/Frameworks:
EWSMac.framework
USMFramework.framework
Library/Indexes:
FindByContent
Library/InputManagers:
Library/Internet Plug-Ins:
.DS_Store
Google Earth Web Plug-in.plugin
Macromedia
Library/Keyboard Layouts:
Library/LaunchAgents:
com.adobe.ARM.202f4087f2bbde52e3ac2df389f53a4f123223c9cc56a8fd83a6f7ae.plist
com.apple.FolderActions.enabled.plist
com.apple.FolderActions.folders.plist
Library/PreferencePanes:
GPGTools.prefPane
Library/Services:
GraphicConverter.service
Step 5:
iMac5:~ guppy$ osascript -e 'tell application "System Events" to get the name of every login item'
System Events, AirPort Base Station Agent, GrowlHelperApp, SSHKeychain, OpenDNS Updater, iTunesHelper, ConnectService
iMac5:~ guppy$
Thanks, bluepaua. I think this will be very helpful as well!
A good start would be to uninstall that anti virus.
Uninstall the Intego crapware, reboot, and try again.
I agree. Thanks for the help!
can't ssh from Lion to Snow Leopard