No route to host, but can ping [overthewire games]
I'm trying to solve some IT puzzles about crypto: http://overthewire.org/wargames/krypton/krypton0.html.
But I failed just with the very first exercise. I decoded the password with openssl (that was easy) but when I try to connect to the machine using ssh, it shows the below message: 
ssh: connect to host krypton.labs.overthewire.org port 2222: No route to host
I tried to ping the machine:
ping krypton.labs.overthewire.org
PING otw.cracksucht.de (176.9.9.172) 56(84) bytes of data.
64 bytes from static.172.9.9.176.clients.your-server.de (176.9.9.172): icmp_seq=1 ttl=53 time=54.5 ms
64 bytes from static.172.9.9.176.clients.your-server.de (176.9.9.172): icmp_seq=2 ttl=53 time=54.0 ms
64 bytes from static.172.9.9.176.clients.your-server.de (176.9.9.172): icmp_seq=3 ttl=53 time=54.6 ms
^C
--- otw.cracksucht.de ping statistics ---
3 packets transmitted, 3 received, 0% packet loss, time 2002ms
rtt min/avg/max/mdev = 54.054/54.411/54.626/0.254 ms
So it responds. I also tried to ssh to the machine using its IP:
dig krypton.labs.overthewire.org
; <<>> DiG 9.9.5-3ubuntu0.10-Ubuntu <<>> krypton.labs.overthewire.org
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NOERROR, id: 38947
;; flags: qr rd ra; QUERY: 1, ANSWER: 3, AUTHORITY: 0, ADDITIONAL: 1
;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 512
;; QUESTION SECTION:
;krypton.labs.overthewire.org. IN A
;; ANSWER SECTION:
krypton.labs.overthewire.org. 119 IN CNAME leelo.overthewire.org.
leelo.overthewire.org. 119 IN CNAME otw.cracksucht.de.
otw.cracksucht.de. 2325 IN A 176.9.9.172
;; Query time: 66 msec
;; SERVER: 127.0.1.1#53(127.0.1.1)
;; WHEN: Mon Oct 16 19:07:19 CEST 2017
;; MSG SIZE rcvd: 124
And then
ssh krypton1@176.9.9.172 -p 2222
ssh: connect to host 176.9.9.172 port 2222: No route to host
ssh 176.9.9.172 -p 2222
ssh: connect to host 176.9.9.172 port 2222: No route to host
ssh 172.9.9.176 -p 2222
ssh: connect to host 172.9.9.176 port 2222: Connection timed out
ssh 176.9.9.172 -p 2222
ssh: connect to host 176.9.9.172 port 2222: No route to host
What is wrong? Is it the part of the exercise (which I do not understand at all)? Or its just does not work? Thank you.
networking ssh routing
asked Oct 16 '17 at 17:08
yakyak
81311
add a comment |
I'm trying to solve some IT puzzles about crypto: http://overthewire.org/wargames/krypton/krypton0.html.
But I failed just with the very first exercise. I decoded the password with openssl (that was easy) but when I try to connect to the machine using ssh, it shows the below message:
ssh: connect to host krypton.labs.overthewire.org port 2222: No route to host
I tried to ping the machine:
ping krypton.labs.overthewire.org
PING otw.cracksucht.de (176.9.9.172) 56(84) bytes of data.
64 bytes from static.172.9.9.176.clients.your-server.de (176.9.9.172): icmp_seq=1 ttl=53 time=54.5 ms
64 bytes from static.172.9.9.176.clients.your-server.de (176.9.9.172): icmp_seq=2 ttl=53 time=54.0 ms
64 bytes from static.172.9.9.176.clients.your-server.de (176.9.9.172): icmp_seq=3 ttl=53 time=54.6 ms
^C
--- otw.cracksucht.de ping statistics ---
3 packets transmitted, 3 received, 0% packet loss, time 2002ms
rtt min/avg/max/mdev = 54.054/54.411/54.626/0.254 ms
So it responds. I also tried to ssh to the machine using its IP:
dig krypton.labs.overthewire.org
; <<>> DiG 9.9.5-3ubuntu0.10-Ubuntu <<>> krypton.labs.overthewire.org
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NOERROR, id: 38947
;; flags: qr rd ra; QUERY: 1, ANSWER: 3, AUTHORITY: 0, ADDITIONAL: 1
;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 512
;; QUESTION SECTION:
;krypton.labs.overthewire.org. IN A
;; ANSWER SECTION:
krypton.labs.overthewire.org. 119 IN CNAME leelo.overthewire.org.
leelo.overthewire.org. 119 IN CNAME otw.cracksucht.de.
otw.cracksucht.de. 2325 IN A 176.9.9.172
;; Query time: 66 msec
;; SERVER: 127.0.1.1#53(127.0.1.1)
;; WHEN: Mon Oct 16 19:07:19 CEST 2017
;; MSG SIZE rcvd: 124
And then
ssh krypton1@176.9.9.172 -p 2222
ssh: connect to host 176.9.9.172 port 2222: No route to host
ssh 176.9.9.172 -p 2222
ssh: connect to host 176.9.9.172 port 2222: No route to host
ssh 172.9.9.176 -p 2222
ssh: connect to host 172.9.9.176 port 2222: Connection timed out
ssh 176.9.9.172 -p 2222
ssh: connect to host 176.9.9.172 port 2222: No route to host
What is wrong? Is it the part of the exercise (which I do not understand at all)? Or its just does not work? Thank you.
networking ssh routing
asked Oct 16 '17 at 17:08
yakyak
81311
add a comment |
I'm trying to solve some IT puzzles about crypto: http://overthewire.org/wargames/krypton/krypton0.html.
But I failed just with the very first exercise. I decoded the password with openssl (that was easy) but when I try to connect to the machine using ssh, it shows the below message:
ssh: connect to host krypton.labs.overthewire.org port 2222: No route to host
I tried to ping the machine:
ping krypton.labs.overthewire.org
PING otw.cracksucht.de (176.9.9.172) 56(84) bytes of data.
64 bytes from static.172.9.9.176.clients.your-server.de (176.9.9.172): icmp_seq=1 ttl=53 time=54.5 ms
64 bytes from static.172.9.9.176.clients.your-server.de (176.9.9.172): icmp_seq=2 ttl=53 time=54.0 ms
64 bytes from static.172.9.9.176.clients.your-server.de (176.9.9.172): icmp_seq=3 ttl=53 time=54.6 ms
^C
--- otw.cracksucht.de ping statistics ---
3 packets transmitted, 3 received, 0% packet loss, time 2002ms
rtt min/avg/max/mdev = 54.054/54.411/54.626/0.254 ms
So it responds. I also tried to ssh to the machine using its IP:
dig krypton.labs.overthewire.org
; <<>> DiG 9.9.5-3ubuntu0.10-Ubuntu <<>> krypton.labs.overthewire.org
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NOERROR, id: 38947
;; flags: qr rd ra; QUERY: 1, ANSWER: 3, AUTHORITY: 0, ADDITIONAL: 1
;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 512
;; QUESTION SECTION:
;krypton.labs.overthewire.org. IN A
;; ANSWER SECTION:
krypton.labs.overthewire.org. 119 IN CNAME leelo.overthewire.org.
leelo.overthewire.org. 119 IN CNAME otw.cracksucht.de.
otw.cracksucht.de. 2325 IN A 176.9.9.172
;; Query time: 66 msec
;; SERVER: 127.0.1.1#53(127.0.1.1)
;; WHEN: Mon Oct 16 19:07:19 CEST 2017
;; MSG SIZE rcvd: 124
And then
ssh krypton1@176.9.9.172 -p 2222
ssh: connect to host 176.9.9.172 port 2222: No route to host
ssh 176.9.9.172 -p 2222
ssh: connect to host 176.9.9.172 port 2222: No route to host
ssh 172.9.9.176 -p 2222
ssh: connect to host 172.9.9.176 port 2222: Connection timed out
ssh 176.9.9.172 -p 2222
ssh: connect to host 176.9.9.172 port 2222: No route to host
What is wrong? Is it the part of the exercise (which I do not understand at all)? Or its just does not work? Thank you.
networking ssh routing
asked Oct 16 '17 at 17:08
yakyak
81311
I'm trying to solve some IT puzzles about crypto: http://overthewire.org/wargames/krypton/krypton0.html.
But I failed just with the very first exercise. I decoded the password with openssl (that was easy) but when I try to connect to the machine using ssh, it shows the below message:
ssh: connect to host krypton.labs.overthewire.org port 2222: No route to host
I tried to ping the machine:
ping krypton.labs.overthewire.org
PING otw.cracksucht.de (176.9.9.172) 56(84) bytes of data.
64 bytes from static.172.9.9.176.clients.your-server.de (176.9.9.172): icmp_seq=1 ttl=53 time=54.5 ms
64 bytes from static.172.9.9.176.clients.your-server.de (176.9.9.172): icmp_seq=2 ttl=53 time=54.0 ms
64 bytes from static.172.9.9.176.clients.your-server.de (176.9.9.172): icmp_seq=3 ttl=53 time=54.6 ms
^C
--- otw.cracksucht.de ping statistics ---
3 packets transmitted, 3 received, 0% packet loss, time 2002ms
rtt min/avg/max/mdev = 54.054/54.411/54.626/0.254 ms
So it responds. I also tried to ssh to the machine using its IP:
dig krypton.labs.overthewire.org
; <<>> DiG 9.9.5-3ubuntu0.10-Ubuntu <<>> krypton.labs.overthewire.org
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NOERROR, id: 38947
;; flags: qr rd ra; QUERY: 1, ANSWER: 3, AUTHORITY: 0, ADDITIONAL: 1
;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 512
;; QUESTION SECTION:
;krypton.labs.overthewire.org. IN A
;; ANSWER SECTION:
krypton.labs.overthewire.org. 119 IN CNAME leelo.overthewire.org.
leelo.overthewire.org. 119 IN CNAME otw.cracksucht.de.
otw.cracksucht.de. 2325 IN A 176.9.9.172
;; Query time: 66 msec
;; SERVER: 127.0.1.1#53(127.0.1.1)
;; WHEN: Mon Oct 16 19:07:19 CEST 2017
;; MSG SIZE rcvd: 124
And then
ssh krypton1@176.9.9.172 -p 2222
ssh: connect to host 176.9.9.172 port 2222: No route to host
ssh 176.9.9.172 -p 2222
ssh: connect to host 176.9.9.172 port 2222: No route to host
ssh 172.9.9.176 -p 2222
ssh: connect to host 172.9.9.176 port 2222: Connection timed out
ssh 176.9.9.172 -p 2222
ssh: connect to host 176.9.9.172 port 2222: No route to host
What is wrong? Is it the part of the exercise (which I do not understand at all)? Or its just does not work? Thank you.
networking ssh routing
networking ssh routing
asked Oct 16 '17 at 17:08
yakyak
81311
asked Oct 16 '17 at 17:08
yakyak
81311
edited Oct 16 '17 at 17:28
yak
asked Oct 16 '17 at 17:08
yakyak
81311
asked Oct 16 '17 at 17:08
yakyak
81311
asked Oct 16 '17 at 17:08
yakyak
81311
81311
add a comment |
add a comment |
2 Answers
2
active
oldest
votes
Your "no route to host" while the machine responds to ping is a sign of a firewall that is denying you access but is informing you that it happened (i.e. with an ICMP message rather than just silent drop).
Check your outgoing firewall. If it isnt that then its blocked closer to the destination.
answered Oct 16 '17 at 19:21
Paula LivingstonePaula Livingstone
1413
add a comment |
You definitely has firewall issue between you and remote host you trying to access.
You can get ping response from remote host because ICMP traffic are allowed by firewall but TCP traffic has some blocking based on rules on firewall. Try contacting different service on remote host like http or https or ftp etc if possible.
You can use 'traceroute' program to see if UDP traffic is allowed. Some Linux distribution comes with SSH service dropped by default firewall rules. Best way is to contact remote host admin/user to be sure that your IP is allowed.
Are you sure remote host running. SSH service on port 2222 not 22 ?? You are connecting ssh on 2222 port with -p option on your command
answered Oct 16 '17 at 21:25
A. BauaniA. Bauani
515
add a comment |
Your Answer
StackExchange.ready(function() {
var channelOptions = {
tags: "".split(" "),
id: "3"
};
initTagRenderer("".split(" "), "".split(" "), channelOptions);
StackExchange.using("externalEditor", function() {
// Have to fire editor after snippets, if snippets enabled
if (StackExchange.settings.snippets.snippetsEnabled) {
StackExchange.using("snippets", function() {
createEditor();
});
}
else {
createEditor();
}
});
function createEditor() {
StackExchange.prepareEditor({
heartbeatType: 'answer',
autoActivateHeartbeat: false,
convertImagesToLinks: true,
noModals: true,
showLowRepImageUploadWarning: true,
reputationToPostImages: 10,
bindNavPrevention: true,
postfix: "",
imageUploader: {
brandingHtml: "Powered by u003ca class="icon-imgur-white" href="https://imgur.com/"u003eu003c/au003e",
contentPolicyHtml: "User contributions licensed under u003ca href="https://creativecommons.org/licenses/by-sa/3.0/"u003ecc by-sa 3.0 with attribution requiredu003c/au003e u003ca href="https://stackoverflow.com/legal/content-policy"u003e(content policy)u003c/au003e",
allowUrls: true
},
onDemand: true,
discardSelector: ".discard-answer"
,immediatelyShowMarkdownHelp:true
});
}
});
Sign up or log in
StackExchange.ready(function () {
StackExchange.helpers.onClickDraftSave('#login-link');
});
Sign up using Google
Sign up using Facebook
Sign up using Email and Password
Post as a guest
Required, but never shown
StackExchange.ready(
function () {
StackExchange.openid.initPostLogin('.new-post-login', 'https%3a%2f%2fsuperuser.com%2fquestions%2f1259644%2fno-route-to-host-but-can-ping-overthewire-games%23new-answer', 'question_page');
}
);
Post as a guest
Required, but never shown
2 Answers
2
active
oldest
votes
2 Answers
2
active
oldest
votes
active
oldest
votes
active
oldest
votes
Your "no route to host" while the machine responds to ping is a sign of a firewall that is denying you access but is informing you that it happened (i.e. with an ICMP message rather than just silent drop).
Check your outgoing firewall. If it isnt that then its blocked closer to the destination.
answered Oct 16 '17 at 19:21
Paula LivingstonePaula Livingstone
1413
add a comment |
Your "no route to host" while the machine responds to ping is a sign of a firewall that is denying you access but is informing you that it happened (i.e. with an ICMP message rather than just silent drop).
Check your outgoing firewall. If it isnt that then its blocked closer to the destination.
answered Oct 16 '17 at 19:21
Paula LivingstonePaula Livingstone
1413
add a comment |
Your "no route to host" while the machine responds to ping is a sign of a firewall that is denying you access but is informing you that it happened (i.e. with an ICMP message rather than just silent drop).
Check your outgoing firewall. If it isnt that then its blocked closer to the destination.
answered Oct 16 '17 at 19:21
Paula LivingstonePaula Livingstone
1413
Your "no route to host" while the machine responds to ping is a sign of a firewall that is denying you access but is informing you that it happened (i.e. with an ICMP message rather than just silent drop).
Check your outgoing firewall. If it isnt that then its blocked closer to the destination.
answered Oct 16 '17 at 19:21
Paula LivingstonePaula Livingstone
1413
answered Oct 16 '17 at 19:21
Paula LivingstonePaula Livingstone
1413
answered Oct 16 '17 at 19:21
Paula LivingstonePaula Livingstone
1413
answered Oct 16 '17 at 19:21
Paula LivingstonePaula Livingstone
1413
1413
add a comment |
add a comment |
You definitely has firewall issue between you and remote host you trying to access.
You can get ping response from remote host because ICMP traffic are allowed by firewall but TCP traffic has some blocking based on rules on firewall. Try contacting different service on remote host like http or https or ftp etc if possible.
You can use 'traceroute' program to see if UDP traffic is allowed. Some Linux distribution comes with SSH service dropped by default firewall rules. Best way is to contact remote host admin/user to be sure that your IP is allowed.
Are you sure remote host running. SSH service on port 2222 not 22 ?? You are connecting ssh on 2222 port with -p option on your command
answered Oct 16 '17 at 21:25
A. BauaniA. Bauani
515
add a comment |
You definitely has firewall issue between you and remote host you trying to access.
You can get ping response from remote host because ICMP traffic are allowed by firewall but TCP traffic has some blocking based on rules on firewall. Try contacting different service on remote host like http or https or ftp etc if possible.
You can use 'traceroute' program to see if UDP traffic is allowed. Some Linux distribution comes with SSH service dropped by default firewall rules. Best way is to contact remote host admin/user to be sure that your IP is allowed.
Are you sure remote host running. SSH service on port 2222 not 22 ?? You are connecting ssh on 2222 port with -p option on your command
answered Oct 16 '17 at 21:25
A. BauaniA. Bauani
515
add a comment |
You definitely has firewall issue between you and remote host you trying to access.
You can get ping response from remote host because ICMP traffic are allowed by firewall but TCP traffic has some blocking based on rules on firewall. Try contacting different service on remote host like http or https or ftp etc if possible.
You can use 'traceroute' program to see if UDP traffic is allowed. Some Linux distribution comes with SSH service dropped by default firewall rules. Best way is to contact remote host admin/user to be sure that your IP is allowed.
Are you sure remote host running. SSH service on port 2222 not 22 ?? You are connecting ssh on 2222 port with -p option on your command
answered Oct 16 '17 at 21:25
A. BauaniA. Bauani
515
You definitely has firewall issue between you and remote host you trying to access.
You can get ping response from remote host because ICMP traffic are allowed by firewall but TCP traffic has some blocking based on rules on firewall. Try contacting different service on remote host like http or https or ftp etc if possible.
You can use 'traceroute' program to see if UDP traffic is allowed. Some Linux distribution comes with SSH service dropped by default firewall rules. Best way is to contact remote host admin/user to be sure that your IP is allowed.
Are you sure remote host running. SSH service on port 2222 not 22 ?? You are connecting ssh on 2222 port with -p option on your command
answered Oct 16 '17 at 21:25
A. BauaniA. Bauani
515
answered Oct 16 '17 at 21:25
A. BauaniA. Bauani
515
answered Oct 16 '17 at 21:25
A. BauaniA. Bauani
515
answered Oct 16 '17 at 21:25
A. BauaniA. Bauani
515
515
add a comment |
add a comment |
Thanks for contributing an answer to Super User!
- Please be sure to answer the question. Provide details and share your research!
But avoid …
- Asking for help, clarification, or responding to other answers.
- Making statements based on opinion; back them up with references or personal experience.
To learn more, see our tips on writing great answers.
Sign up or log in
StackExchange.ready(function () {
StackExchange.helpers.onClickDraftSave('#login-link');
});
Sign up using Google
Sign up using Facebook
Sign up using Email and Password
Post as a guest
Required, but never shown
StackExchange.ready(
function () {
StackExchange.openid.initPostLogin('.new-post-login', 'https%3a%2f%2fsuperuser.com%2fquestions%2f1259644%2fno-route-to-host-but-can-ping-overthewire-games%23new-answer', 'question_page');
}
);
Post as a guest
Required, but never shown
Sign up or log in
StackExchange.ready(function () {
StackExchange.helpers.onClickDraftSave('#login-link');
});
Sign up using Google
Sign up using Facebook
Sign up using Email and Password
Post as a guest
Required, but never shown
Sign up or log in
StackExchange.ready(function () {
StackExchange.helpers.onClickDraftSave('#login-link');
});
Sign up using Google
Sign up using Facebook
Sign up using Email and Password
Post as a guest
Required, but never shown
Sign up or log in
StackExchange.ready(function () {
StackExchange.helpers.onClickDraftSave('#login-link');
});
Sign up using Google
Sign up using Facebook
Sign up using Email and Password
Sign up using Google
Sign up using Facebook
Sign up using Email and Password
Post as a guest
Required, but never shown
Required, but never shown
Required, but never shown
Required, but never shown
Required, but never shown
Required, but never shown
Required, but never shown
Required, but never shown
Required, but never shown
