Networking :: Keep Some Port Out Of The Scope Of A VPN Connection ?
Oct 31, 2010
I have a server (192.168.1.9) in my network that is running a http server on port 5000. This server port have been opened (on my router 192.168.1.1) to be available from my public IP (on port 80).
I have recently installed openvpn to connect to a vpn, but I'd like to keep my http server available from my public IP (no need to have it available to the VPN network).
I'm completely lost and I don't know where to start ...
Here are some details about the route configuration :
i have an embbeded hardware that uses bootp for booting from a Network Managemnt Host (NMH)on the same ethernet. The embedded hardware has both kind of ports i.e ethernet as well as E1/T1. I would like ask, what do i require to establish a communication-link between the embedded hardware and the NMH throuh E1/T1 ports of embedded hardware, so as to make it boot through from E1/T1. Further, NMH possesses only ethernet port. Just to refine my questions i'd like to know what additions do i need to do on my NMH , like may be i have to put an E1/T1 port or is it possible that the E1/T1 port can be directly connected to an ethernet port on the other host.
pardon me if i am not making absolute sense here as my knowledge is limited on Layer 1 and layer 2.
I get a connection refused error whenever I attempt to connect to a remote ssh server, I tried the test at and it says outbound ssh port 22 is not being blocked. I'm wondering what else could be the problem.
having a port 22:connection refused problem with SSH. None of what I have read has been what I have been experiencing, so I figured I would post here. The worst that could happen is this gets completely ignored, or I am told that there is already a solution, that I missed it, and directed to it. Here is my problem:
Just learned how to ssh into my machine a few days ago. Everything has been running smoothly until I ran into a little problem: all of a sudden I can't connect anymore. I have sshd-server installed and updated. I have sshd turned on
Code: /sbin/service sshd start And I even ran:
Code: /etc/init.d/sshd start Because I was told that it would start ssh from boot. Nothing has changed from today and yesterday and I haven't been having problems with port 22 being blocked.
I have also tried to ssh into the machine by the machine itself:
I cannot use GRsync from Ubuntu Desktop to PCLinuxOS laptop.The 2 computers can ping each other. I have disabled both firewalls. My laptop IP address is 192.168.1.11This is the error on Ubuntu Grsync:
ssh: connect to host 192.168.1.11 port 22: Connection refused rsync: connection unexpectedly closed (0 bytes received so far) [sender] rsync error: error in rsync protocol data stream (code 12) at io.c(601) [sender=3.0.7] Rsync process exit status: 12
On PCLinuxOS it wont say Ethernet is connected when trying a static address setup.However it does connect to the internet via auto Ethernet setup and a LAN cable. It then says connected. In order to use SSH and GRsync what programs are required? I have these installed on both machines: grsync openssh-client openssh-server
Hello. I want to use my Debian box as an internet connection for a Win95 laptop. The laptop is old enough that the only port I have available to connect to the internet from is the serial port. I have heard that a serial port redirector will allow it to access the internet through my debian box, but I have no clue how to set one up. Any advice. Thanks
I am trying to use link scope IPv6 addresses to permit two machines to connect using IPv6, but I cannot figure out how to do it without specifying the interface to use on every connection. Here is an example ping:
[root@ppatel-brn1 ~]# ping6 -c 3 fe80::204:75ff:feb6:2994 connect: Invalid argument [root@ppatel-brn1 ~]# ping6 -c 3 -I eth0 fe80::204:75ff:feb6:2994 PING fe80::204:75ff:feb6:2994(fe80::204:75ff:feb6:2994) from fe80::214:22ff:febd:7c1f eth0: 56 data bytes 64 bytes from fe80::204:75ff:feb6:2994: icmp_seq=0 ttl=64 time=0.836 ms 64 bytes from fe80::204:75ff:feb6:2994: icmp_seq=1 ttl=64 time=0.286 ms 64 bytes from fe80::204:75ff:feb6:2994: icmp_seq=2 ttl=64 time=0.280 ms
I have my desktop computer (running F13) configured to accept ssh over port 22 via the firewall configuration tool. If I type ifconfig -a, this computer, which is running on my wireless network, tells me:
However, if I go to my laptop computer (also running F13) and try and ssh into the desktop, i.e. ssh icthy@192.168.1.100, I get this response:
Code:
ssh: connect to host 192.168.1.100 port 22: Connection refused.
I guess I am confused to what is blocking the connection? Is there another means on F13 other than the default Firewall? I haven't really messed with the network at all. For what it's worth, I am hoping to set things up so I can just ssh into the computer name, (ssh icthy@desktop) eventually, but want to start with the IP. So, can anyone offer a hint as to what I can look for that is blocking port 22?
I have a Windows machine on which NX Client has been installed. I wanted to test if I could access my Ubuntu box. The Ubuntu Box has NX Server, Node and Client installed. When I try to log in from the Windows machine using NX Client with my Ubuntu username and password I get an error connection refused.
The following service is running: OpenBSD Secure Shell server sshd How can I resolve the issue?
I have had a look at the the information on the ubuntu forum about this but am having trouble getting the server to do what i want it to do.
I have a VPS running ubuntu 9.10 and i am trying to set it up to redirect port 25 to a remote machine via a VPN connection (remote machine connected via VPN)
i have tried setting this up in the firewall using webmin but it is not working.
I've searched through the forums and found a few threads that kind of helped, but I'm still pretty lost when it comes to TC. I'm trying to do and also break it down and explain what each part of the command does so that I can learn along the way. What I'm trying to do is limit any connection from source port 6001 to 30KB/s.
I'm currently running a game server and it has no built in bandwidth limiting feature, which means if someone logs in and needs to download the map it destroys my bandwidth for the rest of the servers players. The game server is running on port 6001.
i am running ncat (netcat's new version from nmap) on centos . I am listening on different ports. My question is , is it possible that when a connection is received on a port say 123, i redirect this connection to a different port and use the 123 port again for listening connections. ncat has an option -k which u can add with -l , it will force fully listen on the port. It can accept multiple connections on a single port but i want that once a client connects on to 123 port, he is forwarded to some other port and no longer on 123.
Trying 192.168.100.9... telnet: Unable to connect to remote host: Connection refused
[Code].....
This last one is strange as I the IP looks odd.
What I am doing wrong, and how do I fix it. After much surfing many mosts say that telnet is not used anymore but I want to use it to test my smtp server.
what I have: Belkin G Wireless Router Model F5D7234-4. To attempt to get Subsonic working, I changed the port forwarding settings (Belkin calls it Virtual Servers) to forward port 4040 to my desktop computer. I then saved changes, and my wireless disconnected. I waited about 3 minutes, and nothing was happening, so I restarted my router. This left me in the position that I am in now. Even when the router and modem are fully booted, the router does not broadcast my SSID. In addition, a wired connection will not connect to the network through the router. This leaves me completely unable to use wireless, and unable to change any settings in the router.
I have installed ubuntu 11.04 and I'm now trying to connect to existing SUSE servers on the LAN. My home directory has a shared NFS mounted home on the SUSE servers while my home on the ubuntu machine is local. I can log in using ssh to all the SUSE servers except one. I get:
ssh: connect to host srv3 port 22: Connection refused
If I use the IP address of srv3 directly it works. Also, before I changed the default machine name ("ubuntu") I could log into srv3.
nslookup srv3 works OK. ping srv3 works OK.
Even if I completely delete the .ssh directory in both my ubuntu home and in my shared home on the SUSE servers I still cannot log in using the srv3 name, only direct IP address works. I'm thinking that the login I did to srv3 before I changed the machine name for the ububtu machine must have goofed up something
I'm fairly sure that this is an Ubuntu issue, as I've tried this on my windows computer with success.I'm running a minecraft server on my laptop, previously over a wireless connection but the data rates were too slow. On a wired connection, however, the server starts up and runs like normal but the port is not open when accessing from the network's public IP. I tested this with canyouseeme(.)org. I can get to it from other computers within the network by using a local IP, which to me seems a little strange as it seems to indicate that the port is open on the PC but somewhere in the router it gets confused due to being wired(?). Obviously I've forwarded the ports on the router (BTHomehub 2.0) with both TCP and UCP (it worked over wireless!). Any suggestions as to what might be causing this? I'm stumped.
while my brother was browsing the web on my windows partition he had a blue screen pop up, one of the soft/hardware error ones, not a true BSOD, anyways, ever since my lan port on the computer seems to not be activiating as no wired connection is recognized. The lan port/card is directly attached to the Mother Board, it's a gigabyte motherboard in a self-build computer. I'm just wondering if there's anything I can do to troubleshoot this and see if it is truly a hardware problem or if its something else.
I want to do a simple port redirect, i.e. whatever comes trough whatever interface on port AAAA will get redirected to port BBBBI thought that iptables -t nat -I PREROUTING --source 0/0 --destination 0/0 -p tcp --dport AAAA -j REDIRECT --to-ports BBBBhowever it doesn't work, e.g. nc -v -w2 -z localhost AAAA gives:
nc: connect to localhost port AAAA (tcp) failed: Connection refused while nc -v -w2 -z localhost BBBB
I'm trying to connect with my server via telnet, but when i sent the command (telnet xxx.xxx.xxx.xxx Port) doesn't works and shows then follow error: Unable to connect to remote host: Connection refused, It happens with any port. Is strange but my telnet services works (telnet xxx.xxx.xxx.xxx), In addition, i tried with firewall enabled and disabled and the problem still happens. My centOS run on virtualbox.
I have an external hd attached to my one computer at home, use DynDNS to give it a static address, and can usually ssh into the machine fine. I ran update a few days ago and now have the much-aligned "connection reset by peer" error. I checked the machine and made sure everything was "normal;" e.g., checked ssh config for the port change (correct), doubled-checked ufw to make sure the port was open (it was), etc. I ran nmap on the machine and it said the port was open. This morning when I arrived at work, I ran nmap on my machine here where I've been unable to connect and its results were a little surprising: the port I specified at home and was demonstrated as open is not. WTF?
Friday night I was working on some networking stuff between my two Fedora 14 boxes. I have my laptop and my desktop. on both machines I have "system-config-firewall 1.2.27" and "iptables" (i believe both come standard on F14?) I kept getting the same message as seen below before realizing perhaps I should check my firewall!
I added a rule for incoming and outgoing traffic on port 22 and was able to get in with no problems at all! however today I can't ssh into anything... I can't use "Remote Desktop Viewer 2.31.4" to vnc into the machine anymore. I can't remember the exact error message at this time, it's something close to "Connection was terminated" or "Unable to connect" I can update this message later.
last night I foolishly uninstalled the system-config-firewall and then uninstalled iptables to see if it was a simple firewall issue.... totally hosed my system <insert smiley!>
After reinstalling and realizing I didn't backup my documents <insert smiley!...again...> I started reinstalling all of my applications. I'm still unable to use ssh and I've tried to ssh my own computer.
Is this possible?
# ssh 127.0.0.1 ssh: connect to host 127.0.0.1 port 22: Connection refused
everything works fine. I can log in, and local port forwarding is done. Otherwise when I use the command:
ssh user@ssh_server -R 5500:localhost:5500 -p 22
I get an error "remote port forwarding failed for listen port 5500". However when I try remote port forwarding in WinXP by use of putty there is no problem...
I'm using a Debian servers, as router/firwall.. I've two ethernet interfaces into the server, one for wan and one for lan. The i use SNAT so my LAN clients can access the internet throgh the debian router. That is working... Now i want to be able to access servers on the LAN site from the WAN site, and i wanna use port address translation (PAT). I have a FTP server running on a lan server, so i'm trying to portward port 21.
When people try to access my FTP from the WAN site, they are redirected to the local FTP server, and they are promted for crendentials, but when the credentials are typed, and the local ftp server should answer the wan request, the connections dies.
The wan clients are being promted for credentials, so they are redirected to the local lan server, but after that the connections dies, so i think there is some kind of nat problem, when the local lan server is trying to respond to the wan request..
I make an application on GNU/Linux which listening on a MULTICAST stream, so I open my unconnected socket, bind it on a MULTICAST address and a port, join the multicast group with the "setsockopt (IP_ADD_MEMBERSHIP)", then I receive datagram on my socket.
Now I've two different instances of the same application that run with their own MULTICAST address and port. And what I found strange is that, after a misconfiguration, I switch the ports, for example:
Emitting on 225.0.0.1/23451 and 225.0.0.2/23452 Receiving on 225.0.0.1/23452 and 225.0.0.2/23451
And my receiving part doesn't care about the MULTICAST address, it looks like the socket is listening on the port number only! I mean that the receiver [225.0.0.1/23452] take its datagrams from emitter [225.0.0.2/23452] and vice-versa!
