Server :: SSH To Work Computer Behind A Firewall From Home Port?
May 5, 2010
I have a computer which has a public IP.My ISP has allowed only port 22 for my machine to be accessed outside from internet.I want rest of my computers which are connected to this machine be accessible via SSH on internet.I can configure IPTABLES to route different ports to internal machines but since ISP has given only one port for the gateway how can I go for it any guesses. I came across some thing reverse SSH tunneling but that has to keep the connection alive all the time at gateway I want my trusted people to be directly able to access the machines on LAN to which they have account to login in this scenario.
View 3 Replies
ADVERTISEMENT
Aug 5, 2009
If I forward port 80 to port 3128 for squid with an iptable rule, does port 3128 have to be open on the firewall or is this all routed behind the firewall?
View 4 Replies
View Related
Mar 9, 2010
I have setup sshd_config for port 3210! I have difficult setup the iptables firewall to allow ssh on port 3210! i always enter this:
iptables -A INPUT -p tcp --dport 3210 -j ACCEPT
iptables -A OUTPUT -p tcp --sport 3210 -j ACCEPT
but after i restart ssh, the system do not allow port 3210... why? do i forget something?
View 4 Replies
View Related
Sep 1, 2010
My host is blocking port 3960 which I need to use for an SVN server, they are telling me that I will have to install my own firewall. I've not done this before and am not sure of what to do or whether anything I can install will be enough protection.
View 2 Replies
View Related
Apr 21, 2010
I have a small home-office network. On that network I have two linux computers, one is a client the other a server.
On the server I have NFS Server setup and mount some NFS exports on the client computer.
On the server I have the firewall on and here it becomes a little tricky.
Since both the server and the client connect to the router the interface (eth1) is theoretically both an internal & external zone.
The router is commercial grade and therefore has a good firewall on it which is also setup. Therefore the firewall on the server is really more of a backup than a necessity. But that's fine, and by having the server's firewall on 'fail2ban' is able to work which I like to have working so I don't want to just turn off the server firewall even though I have good security from the router.
However, when I turn on the server's firewall, the client computer cannot see the NFS server when scanning for server -- done by: clicking on "Choose" next to "NFS Server Hostname" when adding an NFS share in the NFS Client in YaST. Clearly something is being blocked even though I have both "NFS Client" and "NFS Server Service" allowed in the server firewall. The Firewall config. files for these are below.
The Firewall configuration is pretty much "out of the box". That is I have the services I need opened up for the external zone, the other zones are left at their default which means the internal zone, although not used (i.e.: attached to any interface), is completely open.
The perfect solution I guess would be to setup my client computer to connect through a different NIC (perhaps eth0), make that the "Internal Zone" and therefore allow all traffic through to it while still blocking the server from the external zone. However, I cannot make that physical change to my network for now so I am looking for an in between (non-perfect) solution.
In this case I am guessing that means opening up extra NFS ports to the external zone so I have full NFS functionality. I don't mind this because like I said, the router firewall is the main line of defense anyway.
So, given all of the above could someone tell me what I would need to additionally open up in the server firewall to make the NFS server detection work on the client while the firewall was on. Or, if you have a cleverer/better solution without me changing my physical network that would be great.
Hopefully I have written this in enough detail and clearly enough so that all the parameters are clear but if not, feel free to ask me what you like and I'll try to make it clear.
Code:
## Description: Firewall Configuration for NFS kernel server.
#
# Only the variables TCP, UDP, RPC, IP and BROADCAST are allowed.
# More may be supported in the future.
code....
View 6 Replies
View Related
Mar 10, 2011
tell me the command for iptable rule to add in Chain RH-Firewall-1 to block ftp port & the ftp server was configured in public ip address,i searched in google but i did'nt get the exact command for iptables rule in Chain RH-Firewall-1.
View 3 Replies
View Related
Oct 15, 2010
I would like to use ssh / scp between one computer at home and another at work. I can do it from home to work, but not the opposite. I think my home IP address starts with 82., is that ok? The one at work starts with 130. Here some terminal commands i launched (I cannot fully understand them). I also used a site of the internet provider, first to add rules (eg allow this and that IP address), then to disabled the firewall. The /etc/ssh/sshd_config of the two computers are the same.
Code:
sudo apt-get install ssh openssh-server
sudo /etc/init.d/ssh start
sudo iptables -A INPUT -p tcp -d 0/0 -s 0/0 --dport 22 -j ACCEPT
[code]....
View 8 Replies
View Related
Jan 21, 2010
I'm going to start a new thread because previous searches have not totally satisfied my question. I've read all day about doing this but each inquiry leads to discussion of configuring the router. I am also not network savy. I would like to set up an FTP server on my home computer (presently Ubuntu 8.10). I have only one computer. I am using DSL with my telephone line for internet connection. I do not use a router.
Is it possible to do this with no router and only a DSL ISP connection?
View 3 Replies
View Related
Feb 7, 2010
I am setting up Apache (Fedora 12) inside my home network. From inside my home network I access it without any problem. I need to set it up to access it from internet. I have the following questions. Here is temporary setup for testing purpose.
Internet-->ADSL modem (SEIMENS Speed Stream 4200)---> Apache (Fedora 12)
1. Do I have to do any kind of ports forwarding on ADSL modem. (There is no option to do port forwarding on Modem) May be I need different Model of Modem??
2. I tired to Ping my real IP for modem form another computer from internet. I am even unable to PING the ADSL 's real IP. Why it is that?
View 6 Replies
View Related
Aug 6, 2011
I am trying to make my home server accessible to the whole web. I have installed Nginx on my Fedora 15 64-bit Linux machine, and it works with localhost but it doesn't work online or allow other computers on the network to access it via the IP address. It keeps coming back with: Could not connect
I have port forwarding. I have even tried different ports but they all seem to be blocked. What could be wrong? I have a netgear router.
View 4 Replies
View Related
Oct 3, 2010
I'm trying to enable port forwarding so I can use my computer as an FTP server to some friends. Here's my setup:
CLEAR wireless modem <--> LAN port 4 on router (not WAN) and LAN port 1 on router <---> eth0 in Ubuntu 9.10
The modem acts as a DHCP server which successfully assigns an IP address to my desktop system. I can also go onto the internet just fine on my desktop, and any other computer that connects to the router.
I have enabled port forwarding on the modem (not the router because it's being used as a switch, and not using its WAN port) to forward ports 21 and 80 to my desktop. What I don't understand, though, is that when I try to FTP to the modem's WAN IP address, the connection is refused. However, when I use websites such as:
www.canyouseeme.org
www.yougetsignal.com/tools/open-ports/
They say ports 21 and 80 are open (and not other random ports like 22 or 23 which I tried to see if the site simply said everything was open) but I cannot access my site from a web browser.
I was wondering what it was that's stopping computers from the Internet from communicating with my computer? The modem? The router? Configs?
View 3 Replies
View Related
Sep 21, 2010
What is a good MTA (e.g. Postfix or something else) setup for a home computer behind a NAT, or a laptop that is not always online? I've read a lot of Postfix tutorials on how to set it up this way or that, but they are usually geared towards computers that are servers ie they
have a static IP
have a domain name
are always connected to the same network
My requirements are, I guess: Ability to redirect mail for local users to another server of my choosing. No listening for incoming SMTP connections - outgoing only Ability to route outgoing mail via an external SMTP server with authentication (and perhaps encryption) If not Postfix, I need an MTA which can queue up mails in case it temporarily has no internet connection.
View 4 Replies
View Related
Dec 8, 2010
Through the Black Friday shuffle of getting new hardware, I now have a 500TB external drive, a 1TB external drive, and an old computer I want to set up as a home server. My family has a lot of photos that are currently stored on many different computers and are not backed up, I want 500gb of space for photos, and for those photos to be backed up. That would leave the other half of the 1TB drive for assorted things like personal backups, and general file storage. I know enough how to set up Ubuntu server edition on the computer, but the options on how I can set up the storage is stumping me.
To Recap, I have 1.5TB of storage total split 1TB/500GB. I want 500GB to be used for a central storage for the 10+ computers in my house(mostly using Windows) and that 500GB would be automatically backed up. The 500GB that's left would be used for non critical files, and wouldn't be backed up.
What is the best way of backing up the files? (script once a day that copies files? Some backup program?)
Would the 500gb drive be best for backing up to(having the 1TB be where people would put the pictures) or the other way around? Does it really matter?
Any tips on the cleanest way to have this work cleanly with Windows, Linux, and Mac? How well do photo programs(Picasa, Shotwell, iPhoto) like a setup like this? Is it possible to have different programs on different machines all reference the same file system without their automatic sorting(to folders, usually by date) messing each other up?
View 1 Replies
View Related
Feb 18, 2011
I want to try and set up a old cheap computer with ubuntu and run it as a home server to toy around with. how to get started? (Where to get an old computer? Craigslist? What specs should I be looking out for? Wireless vs. ethernet? What software to use? ssh?)
View 2 Replies
View Related
Aug 13, 2010
Asterisk and its cousin technologies intrigue as well as confuse me. I'm wondering: Is it possible to set up an Asterisk (or other) server on a home computer with no special hardware and use it to route calls between mobile devices in remote locations? I'm hoping this could work similarly to Skype Mobile, Google Voice, etc., except on a WAY smaller scale. This is just something I'd use personally for calls to family and friends--nothing huge.
Since my computer is just a regular laptop with no 3G connectivity, I don't expect to use 3G for calls. I just think it would be cool, for instance, to go to a caf� with WiFi and use a SIP/VoIP client on my Android phone to call up a friend who also has a phone or PC with a SIP/VoIP client on it. I realize I could do the same thing far more easily with an account at Skype or some other provider. My interest in attempting this project is more for the learning experience than practical use.
If indeed this is possible to do with the hardware I already own, any tips for starting out? My computer is a MacBook Pro 5,5 (dual-booting Sabayon Linux and Mac OS X). I know I could install Asterisk from within Sabayon, install a specialized telephony distro to a new partition, or run a virtual Asterisk machine--but I'm not sure which option, if any, would be most appropriate here. I'm also not sure if Asterisk would accomplish what I want, or if I should look at other software.
View 6 Replies
View Related
Feb 25, 2011
I need redirect serial port from ONE computer to ANOTHER computer, and at the another send this port to VirtualBox with WindowsXP.VB needed because i need to use software for windoze I do this:NE computer:socat tcp-l:54321,reuseaddr,fork file:/dev/ttyS0,nonblock,waitlock=/var/run/tty0.lock
ANOTHER computer:
socat pty,link=/tmp/ttyS0,waitslave tcp:ONE:54321
Now (at ANOTHER) i've set serial port in VirtualBox as
[code]...
View 2 Replies
View Related
Apr 12, 2010
Ok, for some reason I can't get autofs to work on /home. I setup a NIS server and wanted to map the /home on the client to the /home on the server with NFS. But I want to use autofs to mount the users' home directories. BUT I get an error every time. Here is my configuration:Turned off firewall and SELinux on both system to rule those out. It works if I use /tmp/home as the autofs mount, but no with /home.
View 4 Replies
View Related
Jan 28, 2010
i have to deal with reverse proxy issue and want to access few LAN devices having port 5900 and 9999, what exact steps i have to follow to allow this port in fedora firewall.
View 3 Replies
View Related
Sep 3, 2009
I have a problem sending of file attachment using Instant Messengeri have a firewall using firestarter, if i used outside firewall they can able to recieve my file in instant meesenger but if i used firestarter it always cancelled my sending of file attachment....
View 3 Replies
View Related
Aug 26, 2009
I want to open port 2700 on my firewall but I don't know how I try with Code:iptables -A INPUT -i eth0 -p tcp --sport 2700 -m state --state ESTABLISHED -j ACCEPT But the port is not open I see the firewall configuration with the command setup . I use CentOS 5.3 here a screen of my configuration :http://upbg.net/out.php/i3537_sshot3.pngCurrently my firewall is off because I don't know how to turn on 2700 when the port is open I will turn on firewall .If I write 2700 in other ports field will 2700 be open ? Before 1 month I try but the port was not open . I have only 1 last question will firewall reduce the load of the my server now mysql use many CPU % and I just don't know why
View 14 Replies
View Related
Apr 12, 2011
when i am enabling mysql in server (port 3306) it does'nt work. but when i execute iptables -F it works what may be the reson?
View 6 Replies
View Related
Apr 17, 2011
I want to open the port 18680 on my remote Fedora 14 machine. I didsudo iptables -I INPUT -p tcp --dport 18680 -m state --state NEW,ESTABLISHED -j ACCEPTsudo iptables -I OUTPUT -p tcp --sport 18680 -m state --state ESTABLISHED -j ACCEPTsudo service iptables saveThe status returned is OK.I have also opened the port on my security group on Amazon. Also, I rebooted the machine.When I use the browser to view the application running at port 18680 the browser cannot connect.
View 1 Replies
View Related
Feb 18, 2010
nmap is showing a port as closed. I have the firewall stopped on both hosts.It shows as closed on localhost as well.The process that's listening to that port is not started from xinetd so i doubt hosts.allow/deny is the issue.I can't help but feel that I'm forgetting some other access control mechanism.Both hosts are RHEl5.4
View 3 Replies
View Related
Jul 17, 2010
I just installed Mandriva 2010 and set up the interactive firewall via the MLCC. I set it up not to allow any services to connect (didn't check any boxes). However, when I check my system using a port scanner (shields up at www.grc.com) it says that port 23 is open. Does anyone know why this would be and how I can close it When I look at the daemons running I notice that iptables and ip6tables are 'stopped' although shorewall is running - is this correct? I (perhaps wrongly) thought that iptables needed to be running in order for the firewall to work properly.
View 2 Replies
View Related
Oct 16, 2009
Jst to tryout ufw I tried to close port 80 on my pc. I'm using Ubunutu 9.04. I sudo ufw enable sudo ufw deny 80. But nmap localhost shows port 80 open why? How can I close it? I will need to control some ports on my next server.
View 2 Replies
View Related
Apr 28, 2010
At home - Ubuntu, running vnc, dhcp,
At work - windows 7, running vnc, dhcp.
How would I be able to access a home ubuntu workstation from my work's laptop ?
Any ideas on what is the best set up ?
View 8 Replies
View Related
May 2, 2010
I have a mail server i need it to send message via port 587 not port 25, i make some changes to my postfix server which i use and it is already successed making a telnet to 587 port like it :
[Code]....
View 3 Replies
View Related
Sep 27, 2010
I have properly configured my router to open a port for Transmission and Vuze. The OpenSuSE firewall settings are somewhat confusing, however. How do I add a port specifically for the BT protocol? I know it's the firewall causing issues, because when I shut it down, my BT apps roar to life, and die with a whimper when I turn it back on. In Ubuntu, opening a port in the router is automatically configured in the firewall; that is apparently not the case with this distro.
So, when I go to Yast Firewall, I see "allowed services" under the tabs available. When I hit that tab, I see a dropdown menu that contains services such as NetBios Server and Samba Server. Am I choosing one of those available and adding a port to it? Am I adding a custom service via the Advanced settings, and if so, why isn't there a way to label the service so that it shows up under allowed services?
View 9 Replies
View Related
Jan 15, 2011
I used to have Opensuse 11.0 and Vuze 4.0.2 and both were working great. Recently I upgraded to OpenSuse 11.3 and installed Vuze 4.5.10. I did not change any configuration in the ADSL router but now I could not get the smiley icon to go green. I followed all the steps given here: A Quick Bittorrent Guide (with screenshots). It doesn't work. so I modified FW_ROUTE and FW_MASQUERADE to yes in /etc/sysconfig/SuSefirewall2. That also does not work. What did I miss here? My ADSL router is DSL-2640T.
View 3 Replies
View Related
Jul 25, 2010
Is there a firewall I can install that will only let certain MAC addresses through on a certain port?
View 2 Replies
View Related
