Operating System - HP-UX
1839244 Members
3047 Online
110137 Solutions
New Discussion

Re: Trust relationship between two host

 
Ryan Gu
Frequent Advisor

Trust relationship between two host

When I config MCSG on two N4000 mainforms.I found that I can't create trust relationship between them.
hostA:
hostname: A ip: 1.1.1.1
hostA heart:
name: Ah ip: 10.1.1.1
hostB:
hostname: B ip: 1.1.1.2
hostB_heart:
name: Bh ip: 10.1.1.2
When I write entrys in .rhosts.The result is that I can rlogin A from B,but can't rlogin B from A.I ping from A to B,and from B to A use hostname.It's verything is Ok.
I tried to use heartbeat name(Ah&&Bh),the trust relationship is work well.
why?please help me.
Ryan Gu
6 REPLIES 6
Rajeev  Shukla
Honored Contributor

Re: Trust relationship between two host

What is message you are getting when you do rlogin from A to B does it ask for password or just disconnects.
Also check the /var/adm/inetd.sec file for any allow or deny.
And use /etc/hosts.equiv file instead of .rhosts for MCSG.
Also you should put the name of server what you get from nslookup in .rhosts.
Like do nslookup 1.1.1.1 and nslookup 1.1.1.2, what even names it returns put them in .rhosts.
It should work.

Rajeev
RAC_1
Honored Contributor

Re: Trust relationship between two host

log on to B from A with user and pass.(Same user you are using for rlogin)

do

who -u
Does it show the same hostname/ip you have put in B's .rhosts file?

Post the results.
There is no substitute to HARDWORK
Ryan Gu
Frequent Advisor

Re: Trust relationship between two host

When I rlogin B from A,it ask for password.
I used hosts file to resolve the hostname.I can ping A from B,and ping B from A by hostname.
And all ip are allow in inetd.sec file whethter telnet or ftp.
I tried to use ip instead of hostname in .rhosts,then everything is ok.
It's not first time I meet this question.
I want to know why.
Ryan Gu
Rajeev  Shukla
Honored Contributor

Re: Trust relationship between two host

That clearly means that everyhting is fine like /var/adm/inetd.sec just the problem of .rhosts
Dont use IP address in .rhosts it wont work.
Its very simple as i said before do a nslookup on the IP address and what host name it returns thats what you have to put in .rhosts
say on host B if nslookup 1.1.1.1 returns "abc"
put exactly the same in .rhosts
trust me it will work.

Rajeev
Steven E. Protter
Exalted Contributor

Re: Trust relationship between two host

Another annoying suggestion.

Stop using rhosts and Berkely protocols.

download and install ssh scp sftp in the secure shell package.

Post a request and I'll give you a roadmap on how to exchange public keys and get away from the Berkely unsecure protocols.

P
Steven E Protter
Owner of ISN Corporation
http://isnamerica.com
http://hpuxconsulting.com
Sponsor: http://hpux.ws
Twitter: http://twitter.com/hpuxlinux
Founder http://newdatacloud.com
Ryan Gu
Frequent Advisor

Re: Trust relationship between two host

Thanks Rajeev,I will do it follow your advice.But It works well when I use IP in .rhosts,and MCSG works well also.

Steven,please tell me how to resolve this problem by SSH.Thank you.
Ryan Gu