Connection refused
nothing has changed on server or client side
so was the server hacked?
NO!
the solution is way more simple: the guest wifi might block ssh traffic
give it a try:
if not even telnet can get at least some sort of connection:
telnet 123.123.123.123 12345
Trying 123.123.123.123...
telnet: Unable to connect to remote host: Connection refused
and the user did not change ANYTHING on server or clientside
it is possible that the guest wifi or the network between the users access point and server is blocking this kind of traffic.
(kind of annoying, also changing ssh port won’t help)
possible solution/workaround:
try different connection method: creating a mobile phone hot spot (possible via Android and IPhones) and try to ssh via this hotspot… works?
then the guest wifi used is the problem
especially Fritzboxes from AVM behave this way and even block VPN and RDP traffic.
is it good?
is it bad?
hope the smart phone hot spot solution works.
No route to host
the user might have done this:
# open this port
firewall-cmd --zone=public --add-port=22/tcp --permanent
but then forgotten this:
firewall-cmd --reload
to be honest, pretty annoying X-D
why can’t it just reload, every time a new rule was added? X-D
whatever it works now.