Networking :: Enable A Client To Port Forward Through VPS?
Jul 27, 2011
Well I have been searching for more than a month now and I think I have read every single post related to this subject and finally decided to make a thread.
Now before I begin I am running Openvpn on my CentOS VPS. I have set static IP's for everyone.
Now what I am looking for is this lets say one of my clients wants port 60005 forwarded through my VPS to the internet what are the correct commands to run.
server-ip:60005 to loacl-ip:60005
Sever IP 24.xx.xx.xx
Client IP 192.168.1.2
I notice that my bittorrent client is capable of automatically setting up port forwards with my router, and I want to know if I can do the same in a shell script. The reason is, that since my router is stupid and won't let me keep static IP addresses (it seems they forced a DHCP refresh every week to make me want to pay for a more expensive model which doesn't), I need to get my computer to change the port forward to follow my computer's changing internal network IP address. I have a couple of port forward manually entered into my router settings for web interfaces to bittorrent etc, but of course these have a good chance of being invalidated at each DHCP refresh cycle.
I'm using a Debian servers, as router/firwall.. I've two ethernet interfaces into the server, one for wan and one for lan. The i use SNAT so my LAN clients can access the internet throgh the debian router. That is working... Now i want to be able to access servers on the LAN site from the WAN site, and i wanna use port address translation (PAT). I have a FTP server running on a lan server, so i'm trying to portward port 21.
When people try to access my FTP from the WAN site, they are redirected to the local FTP server, and they are promted for crendentials, but when the credentials are typed, and the local ftp server should answer the wan request, the connections dies.
The wan clients are being promted for credentials, so they are redirected to the local lan server, but after that the connections dies, so i think there is some kind of nat problem, when the local lan server is trying to respond to the wan request..
I need to forward a port to use dtella. I'm using Fedora 10, using iptables for my firewall.
I'm currently trying to forward it from terminal with this command:
Code: sudo iptables -t nat -A PREROUTING -p udp -i eth0 -d [ip address] --dport 11823 -j DNAT --to 192.168.0.2:80 this is what I get from iptables -L Chain INPUT (policy ACCEPT) target prot opt source destination ACCEPT all -- anywhere anywhere state RELATED,ESTABLISHED
Lets say i have two machines on public ips. If i get incoming traffic on machine #1 on port 55242 i would just like to forward it to machine #2 on port 35000.I would just like to use machine #1 same way as a dns server works. It just redirects the traffic and tells the client where to go.
I have a host and a client both running linux. Host has internet through eth2. Client needs to share that connection. The computers are connected directly using a crossover. I can ping from both fine. I figured I needed to port forward eth2 to eth0 to gain internet access in the client. How?
Code:
eth0 Link encap:Ethernet HWaddr 00:26:18:a6:fd:a3 inet addr:192.168.0.1 Bcast:192.168.0.255 Mask:255.255.255.0 inet6 addr: fe80::226:18ff:fea6:fda3/64 Scope:Link UP BROADCAST RUNNING MULTICAST MTU:1500 Metric:1
I have just set up the transmission bittorrent client on my server (using the web interface), and am trying to get the port forwarding right. After noticing low download speeds (and rare uploading), I decided to check if a port needed to be forwarded.
I found many conflicting sites, mentioning both the ranges 6881-6999 and the port 51413 (as well as TCP and UDP versus just TCP). My current configuration is to forward TCP and UDP port 51413 to my server.
If I forward port 80 to port 3128 for squid with an iptable rule, does port 3128 have to be open on the firewall or is this all routed behind the firewall?
I have setup an OpenVPN server on my server box, it had been working perfectly until today. It operates on port 1194 which I am now unable to connect to (tried telnet). I have checked all the firewall rules and they still allow the port and I have also checked to ensure that OpenVPN is still listening to the port, which it's not but I have tried restarting the service and the box which dosent make any difference. The only thing that has changed is that yesterday I installed Openfire, could this have broken something?
I set up an ssh server and configured port forwarding on my router so that I can access the ssh server from the internet. This is working fine, also from within the LAN.
Additionally this machine should be connected to an VPN Server on the internet. Again, this is working. I get connected, the tun interface is coming up, etc.
The moment the VPN Connection is established I can not connect to the SSH Server anymore from the internet, LAN ist still working fine. I guess it has something to do with the route that is set by the VPN Connection?!
So my question is, what do I have to do to reach the ssh server from the internet while the ssh server is connected to an VPN Server itself.
ifconfig without VPN
Code: eth0 Link encap:Ethernet HWaddr 00:1c:c0:c4:df:80 inet addr:192.168.2.10 Bcast:192.168.2.255 Mask:255.255.255.0 inet6 addr: fe80::21c:c0ff:fec4:df80/64 Scope:Link UP BROADCAST RUNNING MULTICAST MTU:1500 Metric:1
I'm trying to enable port forwarding so I can use my computer as an FTP server to some friends. Here's my setup:
CLEAR wireless modem <--> LAN port 4 on router (not WAN) and LAN port 1 on router <---> eth0 in Ubuntu 9.10
The modem acts as a DHCP server which successfully assigns an IP address to my desktop system. I can also go onto the internet just fine on my desktop, and any other computer that connects to the router.
I have enabled port forwarding on the modem (not the router because it's being used as a switch, and not using its WAN port) to forward ports 21 and 80 to my desktop. What I don't understand, though, is that when I try to FTP to the modem's WAN IP address, the connection is refused. However, when I use websites such as:
They say ports 21 and 80 are open (and not other random ports like 22 or 23 which I tried to see if the site simply said everything was open) but I cannot access my site from a web browser.
I was wondering what it was that's stopping computers from the Internet from communicating with my computer? The modem? The router? Configs?
I have a Windows machine on which NX Client has been installed. I wanted to test if I could access my Ubuntu box. The Ubuntu Box has NX Server, Node and Client installed. When I try to log in from the Windows machine using NX Client with my Ubuntu username and password I get an error connection refused.
The following service is running: OpenBSD Secure Shell server sshd How can I resolve the issue?
I have remote server and when I want to connect to it from internet I need to choose port 2222. I tryed to do it using filezilla, gftp, it can be done. Because they want from me to use default ssh port 22
I have an internal network behind a server <10.0.0.1> connected to the internet that NATs my ip <10.17.11.88> only. NAT is not allowed to any other ip addresses. When I use Transmission Bittorrent client to download torrents, The thing is that this 10.20.0.244 is not my machine and doesn't have access to the internet at all. What is happening here? Can anyone help me?
eth0: 192.168.0.0/24 - local lan A eth1: 200.1.2.3 - internet link - default route eth2: 192.168.10.0/24 - local lan B eth3: 192.168.20.0/24 - local lan C Lan A - Default routing to eth0 Lan B - Default routing to eth2 Lan c - Default routing to another server but the workstations has static routing to this server too.
Everything is working fine on Opensuse 11.1 until I upgrade this sever to Opensuse 11.2 ( Reinstall, not update at all ). After upgrade to 11.2 the routing across local lan interfaces simply not work, if you try to ping lan-to-lan you got the message: Network unreachable, even with the IP Forward enable, but the default route is working fine trough the SNAT.
I've come back to Opensuse 11.1 and everything become normal, does anyone have an problem like this? Maybe a bug? PS: I do not try to disable the AppArmor, next weekend I will try Opensuse 11.2 without the AppArmor and post here anyway.
Just setup an ssh server...kinda. I need to forward the port (22) through my router. I have forwarded ports before for programs so the whole thing isnt a mystery. But i need to know what to put in for a couple boxes.... Private ip: ? protocol type: tcp, udp, or both?
I have an apache2 server on a Debian box that I am using as the reverse proxy for my sites that are sitting behind it and everyone is happy. But now I want to be able to access my vmware server console from outside the network without exposing the vmware server port to the internet. So I did this I created a new virtual host for apache and it looks like this (edited for the real world)
So here is what I want to be able to do. I want to be able to punch in [URL] and have the reverse proxy just take care of everything else without having to punch in the port number or anything else. I'd also like to have if possible the ssl on the vmware box just pass through the proxy back to the end user. If that isn't possible and I need to create a new ssl for the apache box then that is ok too. I have googled this and looked at several other sites but I'm still a little bit lost.
While I have Transmission running, whether it be up/downloading or just open with one thing unpaused and no activity, all other computer functions that need internet access are unusable. Transmission says my port is closed in its preferences.
1. How do I find and open port? 2. Will finding an open port solve the problem of all things internet not working while Transmission is? 3. Do I need to create a static ip in order to forward a port through my router? 4. Will creating a static ip and forwarding that port solve my problem of only being able to use the internet while Transmission is on?
Having trouble visualising how IP-Based Virtual Host (with SSL) would work. Here is my vhosts.conf file:
Code: #Define Name Virtal Host NameVirtualHost 10.10.0.54:80 #Used to replace the main server host. The log file will reside in /var/log/httpd/error_log
[Code]....
How will it work? I will need to forward port 443 to the 10.10.0.55 interface right? Without doing that, there is no way this is going to work... is there? And that means that I can't run more than 1 ip-based SSL virtual host on one machine because I can't forward 443 to two different interfaces.
Also, do I use internal ip address or external ip address in the <VirtualHost > tag? I only have one static public ip.
I'm running some vm's in FC12 with kvm-qemu and using virt machine manager. I'd like to have some ports automatically forward on startup and be able to add redirections on the fly. Redirection on the fly is talked about here, but I am getting lost on what should be basic instructions.[URL]
As far as startup, In the past I just ran qemu from the cli and manually specified redirection with redir. I can't figure out how to do it with The virt machine manager which I am using to start my VM's now. I do not want the guests to see the host. From cli startup without virt machine manager, it looked like this: qemu -m 256 -hda vm.img -redir tcp:5555::80 -redir tcp:5556::445 &
