DN8245X6-10 port forwarding for SSH

Forums › LAN (ethernet/Wifi/routers/Bluetooth) › DN8245X6-10 port forwarding for SSH

johnvick2

21 posts

Geek

#299134 13-Aug-2022 17:31

I have http and https working on this router but cannot get port forwarding to work for SSH either on port 22 or a random port.

If I apply the above I get error message: The configured port conflicts with the internal service port.

If I change to a random port it accepts but I cannot connect.

If anyone has this working can you please share settings?

Thanks.

1 | 2

1571 posts

Uber Geek

#2954339 13-Aug-2022 17:34

Never port forward SSH!

Just dont.

Sort out a VPN instead. E.g. buy a Raspberry Pi and install PiVPN

I know its not what you want to hear. I don't have any experience with your device so cant provide advice on how to do it.

johnvick2

21 posts

Geek

#2954340 13-Aug-2022 17:36

Thanks for the reply and I understand the security implications but I would like to get it working.

nzkc

1571 posts

Uber Geek

#2954341 13-Aug-2022 17:37

johnvick2:

Thanks for the reply and I understand the security implications but I would like to get it working.

Aside from the selection of "Application" I cant see anything you've done that is wrong. If there's a pure TCP/UDP option I'd select that instead. I would use "User defined" and see how you get on.

johnvick2

21 posts

Geek

#2954342 13-Aug-2022 17:40

I have tried all the options I can think of including what you suggest, the above screen grab is just an example and to attract attention from those familiar with the device.

I am hoping someone has it working and can share the knowledge.

Jase2985

13457 posts

Uber Geek

ID Verified

Lifetime subscriber

#2954355 13-Aug-2022 19:07

is SSH access enable on the router?

johnvick2

21 posts

Geek

#2954356 13-Aug-2022 19:11

Not sure I have seen an option to enable this, where will I find it?

Jase2985

13457 posts

Uber Geek

ID Verified

Lifetime subscriber

#2954358 13-Aug-2022 19:22

reading this thread and your past threads i think your a bit past a ISP supplied device

Cloud spending continues to surge globally, but most organisations haven’t made the changes necessary to maximise the value and cost-efficiency benefits of their cloud investments. Download the whitepaper From Overspend to Advantage now.

johnvick2

21 posts

Geek

#2954360 13-Aug-2022 19:28

So does this Vodafone supplied router prohibit port forwarding beyond 80 and 443?

My earlier Superhub model could do SSH, RDP basically any port forwarding but this model is trickier.

cyril7

9058 posts

Uber Geek

ID Verified

Trusted

Subscriber

#2954377 13-Aug-2022 22:45

Hi as others have stated, don't port forward anything, unless you take precautions like white listing. These routers are not really suitable for this type of thing.

Cyril

michaelmurfy

meow
13240 posts

Uber Geek

Moderator

ID Verified

Trusted

Lifetime subscriber

#2954380 13-Aug-2022 23:12

It is never a good idea to port forward SSH, RDP or any remote management tools. In-fact, it is never a good idea to port-forward in general.

By port forwarding you're exposing your network to a whole lot of unnecessary risk. The only port forwarding you should do is to a Wireguard server (look at https://pivpn.io) for any remote access for management purposes. Other things like web servers etc should ideally be behind a WAF like Cloudflare (with Cloudflare Tunnel - Free!). Unavoidable things like Plex do come with risk.

SSH, RDP & Web Applications are the most exploited things so why risk it? Start demonstrating good security practices and just don't do it or where possible put behind Cloudflare or use a VPN to protect your home network and all devices on it.

Enter your home IP address into https://shodan.io - it may surprise you...

Michael Murphy | https://murfy.nz
Referral Links: Quic Broadband (use R122101E7CV7Q for free setup)

Are you happy with what you get from Geekzone? Please consider supporting us by subscribing.
Opinions are my own and not the views of my employer.

ArcticSilver

729 posts

Ultimate Geek

#2954382 13-Aug-2022 23:58

There are plenty of good reasons to port forward…….

It sounds like the router is not allowing you to use the port as it is conflicting with its own port usage.

When you say you changed it to a random port, did you only change the external port or both the internal and external?

nztim

3812 posts

Uber Geek

ID Verified

Trusted

TEAMnetwork

Subscriber

#2954385 14-Aug-2022 00:46

Or the RSP is blocking ssh

Any views expressed on these forums are my own and don't necessarily reflect those of my employer.

johnvick2

21 posts

Geek

#2954389 14-Aug-2022 07:40

I have tried with various ports internal and external, not necessarily selecting SSH from the drop down but using the user defined option. My previous Vodafone router, the Ultrahub, had no restrictions with port forwarding and was much simpler to set up.

cyril7

9058 posts

Uber Geek

ID Verified

Trusted

Subscriber

#2954433 14-Aug-2022 13:36

Hi, pretty sure if you map the external port 2222 for example to 22 it most definitely will work, as far as I am aware Voda dont block port 22, well I have several customers on Voda as well as a BIA connection at work, port 22 is most definitely available.

As for the DN8245 I dont really like them but was forced to use one recently for a few weeks on a local community setup I was working on. As I recall I had to map another port (like mentioned above) as the router has a listener on port22 that cannot be bypassed.

As mentioned, if you must port forward and common services like RDP, SSH please white list them, these routers can do limited source address firewalling of port forwards, but not really that flexible as they are a limited feature device, get something better if you want to do what your doing.

Cyril

johnvick2

21 posts

Geek

#2954440 14-Aug-2022 14:12

Thanks for your input is the above what you suggest? It isn't working.

1 | 2