Geekzone: technology news, blogs, forums
Guest
Welcome Guest.
You haven't logged in yet. If you don't have an account you can register now.


theoriginaltoad

3 posts

Wannabe Geek


#238006 28-Jun-2018 12:58
Send private message

Hi,

 

I have a Netcomm NF4V router and (after a lot of messing about wondering why i cant reach my SSH) i've discovered that it has a dropbear_0.46 SSH server setup on it for port 22. I can login to it using admin credentials which is cool but... I'm trying to set up port forwarding to my own SSH server setup on an Asus eebox with Linux Mint and openssh 7.2. It's fine logging in locally on the network, but i want to access it via my public ip. I have set up forwarding for port 2222 and my openssh config to listen to port 2222 just to avoid having the NF4V routers internal SSH get in the way.

 

When i try connecting to my linux box SSH server, I get the error: Connection refused ip 101.x.x.x on port 2222.

 

My questions are:

 

1) Do i need to put the local ip 192.168.1.5 of the server in the DMZ setting as well as in the NAT virtual servers setup page?

 

2) Does anybody know if the NF4V actually supports port forwarding for an SSH server? I talked to a slingshot techie the other day who said that router was locked down to basic internet stuff, but then he didn't know what SSH is and told me to "just reboot the router and keep trying what you want to do" lol.. so i think his info might have been a little dubious anyway. What are others experiences of this? Is there a better router i should get for this purpose or stick with this NF4V thing?

 

3) I can't seem to find any combination of port forwarding that works. I have enabled SSH forwarding with port 2222 in the router security settings page and set virtual servers external and internal ports 2222, but to no avail. I've looked a few guides and they're pretty vague, nothing on SSH for the NF4V.

 

(Btw there is actually a 'Secure Shell Server' option in the NAT virtual servers page that when clicked, sets up the internal and external server ports to 22.. which seems useless unless i wanted to use the routers internal ssh server.)

 

 

 

Your help would be greatly appreciated

 

 

 

theoriginaltoad


Filter this topic showing only the reply marked as answer Create new topic
sbiddle
29268 posts

Uber Geek

Moderator
Trusted
Biddle Corp
Lifetime subscriber

  #2045477 28-Jun-2018 13:34
Send private message

Who is your ISP? Do you actually have a public IP address and not CG-NAT which will make port forwarding impossible?

 

 


theoriginaltoad

3 posts

Wannabe Geek


  #2045528 28-Jun-2018 14:23
Send private message

sbiddle:

 

Who is your ISP? Do you actually have a public IP address and not CG-NAT which will make port forwarding impossible?

 

 

Slingshot broadband https://www.slingshot.co.nz/

 

I don't know for sure, I check whatsmyip.org and I get a number 101.98.xxx.xxx etc which i assume is my public ip. I have been able to use connectbot on my cellphone to login to the routers' SSH with the public ip I get from looking at whatsmyip.org .. Does this mean that the router can be accessed via public ip, but not anything further into my local network such as my eebox linux ssh server?

 

Regards,


 
 
 
 


theoriginaltoad

3 posts

Wannabe Geek


#2045769 28-Jun-2018 21:03
Send private message

Found the problem.. The port forwarding on the router was not quite right. I can now access my SSH server and get around the internal Dropbear ssh server on the router.

 

Check out this article on linuxquestions

 

https://www.linuxquestions.org/questions/linux-server-73/logging-in-using-ssh-via-external-ip-4175632616/

 

 

 

Here are the router config screenshots

 

Must set the SSH server box to listen on port 2222.

 

Click to see full size

 

Click to see full size

 

Click to see full size


nzkc
898 posts

Ultimate Geek


  #2045770 28-Jun-2018 21:17
Send private message

Glad you got it working.

 

A couple of alternatives to this approach which you might consider preferable...

 

  • https://www.dataplicity.com/ - basically runs a service on your linux box (Raspberry Pi for example) where you can get a shell via their website. Ive used it in the past and it works well.  This would work on a CGNAT environment too as you dont have to open anything inbound to your network.
  • OpenVPN server.  I have recently used http://www.pivpn.io/ to do this. Couldnt be simpler with that!  And now I can access anything in my home LAN from anywhere.  This does require you to port forward on your router too.

Filter this topic showing only the reply marked as answer Create new topic





News »

Nanoleaf enhances lighting line with launch of Triangles and Mini Triangles
Posted 17-Oct-2020 20:18


Synology unveils DS1621+ 
Posted 17-Oct-2020 20:12


Ingram Micro introduces FootfallCam to New Zealand channel
Posted 17-Oct-2020 20:06


Dropbox adopts Virtual First working policy
Posted 17-Oct-2020 19:47


OPPO announces Reno4 Series 5G line-up in NZ
Posted 16-Oct-2020 08:52


Microsoft Highway to a Hundred expands to Asia Pacific
Posted 14-Oct-2020 09:34


Spark turns on 5G in Auckland
Posted 14-Oct-2020 09:29


AMD Launches AMD Ryzen 5000 Series Desktop Processors
Posted 9-Oct-2020 10:13


Teletrac Navman launches integrated multi-camera solution for transport and logistics industry
Posted 8-Oct-2020 10:57


Farmside hits 10,000 RBI customers
Posted 7-Oct-2020 15:32


NordVPN starts deploying colocated servers
Posted 7-Oct-2020 09:00


Google introduces Nest Wifi routers in New Zealand
Posted 7-Oct-2020 05:00


Orcon to bundle Google Nest Wifi router with new accounts
Posted 7-Oct-2020 05:00


Epay and Centrapay partner to create digital gift cards
Posted 2-Oct-2020 17:34


Inseego launches 5G MiFi M2000 mobile hotspot
Posted 2-Oct-2020 14:53









Geekzone Live »

Try automatic live updates from Geekzone directly in your browser, without refreshing the page, with Geekzone Live now.


Support Geekzone »

Our community of supporters help make Geekzone possible. Click the button below to join them.

Support Geezone on PressPatron



Are you subscribed to our RSS feed? You can download the latest headlines and summaries from our stories directly to your computer or smartphone by using a feed reader.

Alternatively, you can receive a daily email with Geekzone updates.