Netgate Discussion Forum
    • Categories
    • Recent
    • Tags
    • Popular
    • Users
    • Search
    • Register
    • Login

    Ping permission on SSH

    General pfSense Questions
    4
    8
    1.8k
    Loading More Posts
    • Oldest to Newest
    • Newest to Oldest
    • Most Votes
    Reply
    • Reply as topic
    Log in to reply
    This topic has been deleted. Only users with topic management privileges can see it.
    • A
      assigned
      last edited by

      I hace formed the new user on pfsense web but that user dont having to ping on ssh. When I use to ping, it is shown no permission.
      What can I do for having to ping and How?

      Thanks you in advance.

      1 Reply Last reply Reply Quote 0
      • A
        assigned
        last edited by

        No anyone to answer ?

        1 Reply Last reply Reply Quote 0
        • D
          doktornotor Banned
          last edited by

          "ping on ssh" makes zero sense.

          1 Reply Last reply Reply Quote 0
          • M
            marvosa
            last edited by

            Yes, please rephrase your question.

            1 Reply Last reply Reply Quote 0
            • johnpozJ
              johnpoz LAYER 8 Global Moderator
              last edited by

              @OP – do you mean when you ssh into pfsense, you can not ping?  Ping what?  Can you post a screenshot of what you think is not working.

              Is this what your talking about?

              [2.1-RC1][johnpoz@pfsense.local.lan]/home/johnpoz(1): ping www.google.com
              ping: socket: Operation not permitted
              [2.1-RC1][johnpoz@pfsense.local.lan]/home/johnpoz(2):

              This is normal behavior since your not root, I do believe raw sockets is limited to root..  More that couple ways to solve that I would think..  sudo package would be one way

              http://doc.pfsense.org/index.php/Sudo_Package

              You could prob set sticky on /sbin/ping to allow it to always run as root.

              There normally always more than 1 way to skin the cat.

              So yeah setting +s works

              [2.1-RC1][root@pfsense.local.lan]/root(1): cd /sbin
              [2.1-RC1][root@pfsense.local.lan]/sbin(2): ls -la ping
              -r-xr-xr-x  1 root  wheel  24348 Mar 21  2012 ping
              [2.1-RC1][root@pfsense.local.lan]/sbin(3): chmod +s ping
              [2.1-RC1][root@pfsense.local.lan]/sbin(4): ls -la ping
              -r-sr-sr-x  1 root  wheel  24348 Mar 21  2012 ping
              [2.1-RC1][root@pfsense.local.lan]/sbin(5):

              Notice s is now set on the ping command

              [2.1-RC1][johnpoz@pfsense.local.lan]/home/johnpoz(2): ping www.google.com
              PING www.google.com (74.125.225.211): 56 data bytes
              64 bytes from 74.125.225.211: icmp_seq=0 ttl=52 time=34.325 ms
              64 bytes from 74.125.225.211: icmp_seq=1 ttl=52 time=36.023 ms

              Not sure that is a good idea ;)  sudo might be a more secure way about going about it ;)

              An intelligent man is sometimes forced to be drunk to spend time with his fools
              If you get confused: Listen to the Music Play
              Please don't Chat/PM me for help, unless mod related
              SG-4860 24.11 | Lab VMs 2.7.2, 24.11

              1 Reply Last reply Reply Quote 0
              • A
                assigned
                last edited by

                Yeah John I talking about as you mentioned. I going to try your solution thanks

                [2.1-RC1][johnpoz@pfsense.local.lan]/home/johnpoz(1): ping www.google.com
                ping: socket: Operation not permitted
                [2.1-RC1][johnpoz@pfsense.local.lan]/home/johnpoz(2):

                This is normal behavior since your not root, I do believe raw sockets is limited to root..  More that couple ways to solve that I would think..  sudo package would be one way

                1 Reply Last reply Reply Quote 0
                • A
                  assigned
                  last edited by

                  Thank you againg John

                  So is there any documents that  relate to pfsense commands ?

                  1 Reply Last reply Reply Quote 0
                  • johnpozJ
                    johnpoz LAYER 8 Global Moderator
                    last edited by

                    Its a tweaked version of freebsd, so yeah those commands are pfsense commands

                    An intelligent man is sometimes forced to be drunk to spend time with his fools
                    If you get confused: Listen to the Music Play
                    Please don't Chat/PM me for help, unless mod related
                    SG-4860 24.11 | Lab VMs 2.7.2, 24.11

                    1 Reply Last reply Reply Quote 0
                    • First post
                      Last post
                    Copyright 2025 Rubicon Communications LLC (Netgate). All rights reserved.