我調整了我的 acls 以允許連接埠 22 流量,但是我的存取日誌沒有顯示成功的連接埠 22 連接僅拒絕,並且「拒絕」顯示 http RC 為 200。
[20/Sep/2023:08:11:50 -0400] 0 192.168.xx.xx - - "CONNECT ho-lx-sys-xxx:22 HTTP/1.0" 200 0 "-" "-" TCP_DENIED:HIER_NONE - - -
Here are my tests:
ssh -vvv dbsmith@ho-lx-sys-xxx -o "ProxyCommand=nc -x 192.168.xx.xx:8888 %h %p"
Executing proxy command: exec nc -x 192.168.xx.xx:8888 ho-lx-sys-xxx 22
...
Authenticated to ho-lx-sys-xxx (via proxy).
telnet 192.168.xx.xx 8888
Trying 192.168.xx.xx...
Connected to 192.168.xx.xx.
Escape character is '^]'.
CONNECT ho-lx-sys-xxx:22 HTTP/1.0
HTTP/1.1 200 Connection established
我的日誌格式是:
[%tl] %6tr %>a %[ui %[un "%rm %ru HTTP/%rv" %>Hs %<st "%{Referer}>h" "%{User-Agent}>h" %Ss:%Sh %mt %<pt %<tt
關於為什麼魷魚沒有記錄我的成功嘗試有什麼想法嗎?這是正常的嗎?我看到其他成功的連接,但這些連接位於連接埠 443 上。