无论我做什么都无法 ssh 到 tryhackme 服务器

tag-icon tag-icon ssh openvpn
无论我做什么都无法 ssh 到 tryhackme 服务器

我在从我的 Linux 机器(Linux Mint 21.1 Cinnamon)连接到 tryhackme 的 SSH 服务器时遇到问题。终端显示端口22连接超时错误。

这是终端的输出:

~$ ssh -vvv [email protected]
OpenSSH_8.9p1 Ubuntu-3ubuntu0.3, OpenSSL 3.0.2 15 Mar 2022
debug1: Reading configuration data /etc/ssh/ssh_config
debug1: /etc/ssh/ssh_config line 19: include /etc/ssh/ssh_config.d/*.conf matched no files
debug1: /etc/ssh/ssh_config line 21: Applying options for *
debug2: resolve_canonicalize: hostname 10.10.21.145 is address
debug3: expanded UserKnownHostsFile '~/.ssh/known_hosts' -> '/home/deus-ex/.ssh/known_hosts'
debug3: expanded UserKnownHostsFile '~/.ssh/known_hosts2' -> '/home/deus-ex/.ssh/known_hosts2'
debug3: ssh_connect_direct: entering
debug1: Connecting to 10.10.21.145 [10.10.21.145] port 22.
debug3: set_sock_tos: set socket 3 IP_TOS 0x10
debug1: connect to address 10.10.21.145 port 22: Connection timed out
ssh: connect to host 10.10.21.145 port 22: Connection timed out

以我有限的技能,我还能如何解决这个问题?

  • 我正确配置了 OopenVPN 并.ovpn从站点正确导入了文件,它显示我已在站点访问页面上进行连接。
  • 我允许 SSH 进入ufw并允许输入和输出链。我搞乱了 SSH 配置文件( 被ForwardX11设置为yes, 被ForwardX11Trusted设置为no)。

编辑 :

这是我加载文件时的输出.ovpn

2023-08-03 18:00:14 WARNING: Compression for receiving enabled. Compression has been used in the past to break encryption. Sent packets are not compressed unless "allow-compression yes" is also set.
2023-08-03 18:00:14 --cipher is not set. Previous OpenVPN version defaulted to BF-CBC as fallback when cipher negotiation failed in this case. If you need this fallback please add '--data-ciphers-fallback BF-CBC' to your configuration and/or add BF-CBC to --data-ciphers.
2023-08-03 18:00:14 OpenVPN 2.5.5 x86_64-pc-linux-gnu [SSL (OpenSSL)] [LZO] [LZ4] [EPOLL] [PKCS11] [MH/PKTINFO] [AEAD] built on Jul 14 2022
2023-08-03 18:00:14 library versions: OpenSSL 3.0.2 15 Mar 2022, LZO 2.10
2023-08-03 18:00:14 Outgoing Control Channel Authentication: Using 512 bit message hash 'SHA512' for HMAC authentication
2023-08-03 18:00:14 Incoming Control Channel Authentication: Using 512 bit message hash 'SHA512' for HMAC authentication
2023-08-03 18:00:14 TCP/UDP: Preserving recently used remote address: [AF_INET]18.202.129.195:1194
2023-08-03 18:00:14 Socket Buffers: R=[212992->212992] S=[212992->212992]
2023-08-03 18:00:14 UDP link local: (not bound)
2023-08-03 18:00:14 UDP link remote: [AF_INET]18.202.129.195:1194
2023-08-03 18:00:14 TLS: Initial packet from [AF_INET]18.202.129.195:1194, sid=f8b4add2 9b69173d

编辑2: 以下分别是 ip a 和 ip r 的输出:

~$ ip a
1: lo: <LOOPBACK,UP,LOWER_UP> mtu 65536 qdisc noqueue state UNKNOWN group default qlen 1000
    link/loopback 00:00:00:00:00:00 brd 00:00:00:00:00:00
    inet 127.0.0.1/8 scope host lo
       valid_lft forever preferred_lft forever
    inet6 ::1/128 scope host 
       valid_lft forever preferred_lft forever
2: wlan0: <BROADCAST,MULTICAST,UP,LOWER_UP> mtu 1500 qdisc mq state UP group default qlen 1000
    link/ether a0:2c:36:6c:c1:8b brd ff:ff:ff:ff:ff:ff
    inet 192.168.1.36/24 brd 192.168.1.255 scope global dynamic noprefixroute wlan0
       valid_lft 83529sec preferred_lft 83529sec
    inet6 fe80::4d74:a228:6906:4be8/64 scope link noprefixroute 
       valid_lft forever preferred_lft forever
3: tun0: <POINTOPOINT,MULTICAST,NOARP,UP,LOWER_UP> mtu 1500 qdisc fq_codel state UNKNOWN group default qlen 500
    link/none 
    inet 10.8.0.1/24 scope global tun0
       valid_lft forever preferred_lft forever
    inet6 fe80::444c:446f:76:8869/64 scope link stable-privacy 
       valid_lft forever preferred_lft forever
4: tun1: <POINTOPOINT,MULTICAST,NOARP,UP,LOWER_UP> mtu 1500 qdisc fq_codel state UNKNOWN group default qlen 500
    link/none 
    inet 10.8.154.178/16 scope global tun1
       valid_lft forever preferred_lft forever
    inet6 fe80::767f:df32:bb7:fbe1/64 scope link stable-privacy 
       valid_lft forever preferred_lft forever

~$ ip r
default via 192.168.1.1 dev wlan0 proto dhcp metric 600 
10.8.0.0/24 dev tun0 proto kernel scope link src 10.8.0.1 
10.8.0.0/16 dev tun1 proto kernel scope link src 10.8.154.178 
10.10.0.0/16 via 10.8.0.1 dev tun0 metric 1000 
169.254.0.0/16 dev wlan0 scope link metric 1000 
192.168.1.0/24 dev wlan0 proto kernel scope link src 192.168.1.36 metric 600

编辑3: 这是我 ping 后得到的结果:

ping -c3 10.10.21.145
PING 10.10.93.154 (10.10.93.154) 56(84) bytes of data.

--- 10.10.93.154 ping statistics ---
3 packets transmitted, 0 received, 100% packet loss, time 2043ms

编辑4: 这是我的路由表:

Kernel IP routing table
Destination     Gateway         Genmask         Flags Metric Ref    Use Iface
0.0.0.0         192.168.1.1     0.0.0.0         UG    600    0        0 wlan0
10.8.0.0        0.0.0.0         255.255.255.0   U     0      0        0 tun0
10.8.0.0        0.0.0.0         255.255.0.0     U     0      0        0 tun1
10.8.0.0        0.0.0.0         255.255.0.0     U     0      0        0 tun2
10.10.0.0       10.8.0.1        255.255.0.0     UG    1000   0        0 tun0
169.254.0.0     0.0.0.0         255.255.0.0     U     1000   0        0 wlan0
192.168.1.0     0.0.0.0         255.255.255.0   U     600    0        0 wlan0

答案1

我不知道问题是什么,但我通过卸载 OpenVpn 并清除所有相关文件然后再次安装来解决它(重新安装不起作用)。

感谢您的建设性反馈和提示。

相关内容