Geekzone: technology news, blogs, forums
Guest
Welcome Guest.
You haven't logged in yet. If you don't have an account you can register now.


ForumsLAN (ethernet/Wifi/routers/Bluetooth)DN8245X6-10 port forwarding for SSH
johnvick2

21 posts

Geek
+1 received by user: 1


#299134 13-Aug-2022 17:31
Send private message

I have http and https working on this router but cannot get port forwarding to work for SSH either on port 22 or a random port.

 

 

 

 

 

 

If I apply the above I get error message: The configured port conflicts with the internal service port.

 

If I change to a random port it accepts but I cannot connect.

 

If anyone has this working can you please share settings?

 

 

 

Thanks.

 

 

 

 

 

 

Filter this topic showing only the reply marked as answer View this topic in a long page with up to 500 replies per page Create new topic
 1 | 2
nzkc
1634 posts

Uber Geek
+1 received by user: 1041


  #2954339 13-Aug-2022 17:34
Send private message

Never port forward SSH!

 

Just dont.

 

Sort out a VPN instead. E.g. buy a Raspberry Pi and install PiVPN

 

I know its not what you want to hear. I don't have any experience with your device so cant provide advice on how to do it.



johnvick2

21 posts

Geek
+1 received by user: 1


  #2954340 13-Aug-2022 17:36
Send private message

Thanks for the reply and I understand the security implications but I would like to get it working. 

nzkc
1634 posts

Uber Geek
+1 received by user: 1041


  #2954341 13-Aug-2022 17:37
Send private message

johnvick2:

 

Thanks for the reply and I understand the security implications but I would like to get it working. 

 

 

Aside from the selection of "Application" I cant see anything you've done that is wrong. If there's a pure TCP/UDP option I'd select that instead. I would use "User defined" and see how you get on.



johnvick2

21 posts

Geek
+1 received by user: 1


  #2954342 13-Aug-2022 17:40
Send private message

I have tried all the options I can think of including what you suggest, the above screen grab is just an example and to attract attention from those familiar with the device.

 

I am hoping someone has it working and can share the knowledge.  

Jase2985
13730 posts

Uber Geek
+1 received by user: 6202

ID Verified
Lifetime subscriber

  #2954355 13-Aug-2022 19:07
Send private message

is SSH access enable on the router?

johnvick2

21 posts

Geek
+1 received by user: 1


  #2954356 13-Aug-2022 19:11
Send private message

Not sure I have seen an option to enable this, where will I find it?

 
 
 
 

Shop now on Samsung phones, tablets, TVs and more (affiliate link).
Jase2985
13730 posts

Uber Geek
+1 received by user: 6202

ID Verified
Lifetime subscriber

  #2954358 13-Aug-2022 19:22
Send private message

reading this thread and your past threads i think your a bit past a ISP supplied device

johnvick2

21 posts

Geek
+1 received by user: 1


  #2954360 13-Aug-2022 19:28
Send private message

So does this Vodafone supplied router prohibit port forwarding beyond 80 and 443? 

 

My earlier Superhub model could do SSH, RDP basically any port forwarding but this model is trickier.

cyril7
9073 posts

Uber Geek
+1 received by user: 2499

ID Verified
Trusted
Subscriber

  #2954377 13-Aug-2022 22:45
Send private message

Hi as others have stated, don't port forward anything, unless you take precautions like white listing. These routers are not really suitable for this type of thing.

Cyril

michaelmurfy
meow
13579 posts

Uber Geek
+1 received by user: 10910

Moderator
ID Verified
Trusted
Lifetime subscriber

  #2954380 13-Aug-2022 23:12
Send private message

It is never a good idea to port forward SSH, RDP or any remote management tools. In-fact, it is never a good idea to port-forward in general.

 

By port forwarding you're exposing your network to a whole lot of unnecessary risk. The only port forwarding you should do is to a Wireguard server (look at https://pivpn.io) for any remote access for management purposes. Other things like web servers etc should ideally be behind a WAF like Cloudflare (with Cloudflare Tunnel - Free!). Unavoidable things like Plex do come with risk.

 

SSH, RDP & Web Applications are the most exploited things so why risk it? Start demonstrating good security practices and just don't do it or where possible put behind Cloudflare or use a VPN to protect your home network and all devices on it.

 

Enter your home IP address into https://shodan.io - it may surprise you...




Michael Murphy | https://murfy.nz
Referral Links: Quic Broadband (use R122101E7CV7Q for free setup)

Are you happy with what you get from Geekzone? Please consider supporting us by subscribing.
Opinions are my own and not the views of my employer.

ArcticSilver
731 posts

Ultimate Geek
+1 received by user: 148


  #2954382 13-Aug-2022 23:58
Send private message

There are plenty of good reasons to port forward…….

It sounds like the router is not allowing you to use the port as it is conflicting with its own port usage.

When you say you changed it to a random port, did you only change the external port or both the internal and external?

 
 
 
 

Shop now on Samsung phones, tablets, TVs and more (affiliate link).
nztim
4012 posts

Uber Geek
+1 received by user: 2710

ID Verified
Trusted
TEAMnetwork
Subscriber

  #2954385 14-Aug-2022 00:46
Send private message

Or the RSP is blocking ssh




Any views expressed on these forums are my own and don't necessarily reflect those of my employer. 

johnvick2

21 posts

Geek
+1 received by user: 1


  #2954389 14-Aug-2022 07:40
Send private message

I have tried with various ports internal and external, not necessarily selecting SSH from the drop down but using the user defined option. My previous Vodafone router, the Ultrahub, had no restrictions with port forwarding and was much simpler to set up.

 

 

cyril7
9073 posts

Uber Geek
+1 received by user: 2499

ID Verified
Trusted
Subscriber

  #2954433 14-Aug-2022 13:36
Send private message

Hi, pretty sure if you map the external port 2222 for example to 22 it most definitely will work, as far as I am aware Voda dont block port 22, well I have several customers on Voda as well as a BIA connection at work, port 22 is most definitely available.

 

As for the DN8245 I dont really like them but was forced to use one recently for a few weeks on a local community setup I was working on. As I recall I had to map another port (like mentioned above) as the router has a listener on port22 that cannot be bypassed.

 

As mentioned, if you must port forward and common services like RDP, SSH please white list them, these routers can do limited source address firewalling of port forwards, but not really that flexible as they are a limited feature device, get something better if you want to do what your doing.

 

Cyril

johnvick2

21 posts

Geek
+1 received by user: 1


  #2954440 14-Aug-2022 14:12
Send private message

 

 

 

Thanks for your input is the above what you suggest? It isn't working.

 1 | 2
Filter this topic showing only the reply marked as answer View this topic in a long page with up to 500 replies per page Create new topic








Geekzone Live »

Try automatic live updates from Geekzone directly in your browser, without refreshing the page, with Geekzone Live now.


Updates »

Are you subscribed to our RSS feed? You can download the latest headlines and summaries from our stories directly to your computer or smartphone by using a feed reader.








RSS feeds
Main feed
Forums feed
Copyright
©2002-2026 Geekzone®
Site features
Geekzone BI dashboard
Geekzone Badges
Geekzone Status Page

 

Site Information
Subscribe to Geekzone
Privacy Statement
Forum Usage Guidelines (FUG)
Advertising
Trademark and copyright