Port forwarding, NAT, SSH and Transmission.

A couple of days ago I decided to setup the Transmission daemon, along with automatization for my downloads. Recently, however, to put a layer of security around my laptop, I set up a wireless router I had lying around that is now connected with a wire to my laptop. The reason for this is that I have no idea how iptables work yet, and until then I decided this will suffice for the moment. One of the problems though (yes, problems seems to come in twenty-fold where my luck is concerned), is that when I rewire my laptop directly to the internet, without the router, NetworkManager or Archlinux doesn't reset the ip address, which for some reason jumps to 192.168.1.122, which it never uses otherwise. I haven't yet tried reinstalling networkmanager, but when I did turn it off, dhcpdcd assigned the same address... The problem here being that it shouldn't assign a LAN-address, I'm directly connected to the internet. Sidenote here though; my internet connection is just a plug in the wall, the operators here (I live on a kind of campus), probably only use a network-switch to relay the traffic to the socket.
That's that, my wired network doesn't work directly, only via the wireless router, wired or wireless. Because of this, I have to use port-forwarding for SSH (to test if the port forwarding works), and the Transmission daemon with an rcmp port of 9091., which was my intention in the first place. I have no idea if logging into my.ip.address.here:9091 in a browser would work, I just used localhost:9091.
Now for the results:
$ nmap -sT xx.xxx.xx.xx
Starting Nmap 5.21 ( http://nmap.org ) at 2010-06-14 19:42 CEST
Nmap scan report for xxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxx
Host is up (0.038s latency).
Not shown: 996 closed ports
PORT STATE SERVICE
22/tcp filtered ssh
53/tcp open domain
80/tcp open http
9091/tcp filtered unknown
Here it shows that the ports are actually not closed, but they're not exactly opened either, from what I gathered from the internet.
SSH shows the true problem:
$ ssh neal@xxxxxxxx
ssh: connect to host xxxxxxxx port 22: Connection timed out
SSH-ing to 192.168.0.102 (my internal ip) works, as does to localhost, same for Transmission webGUI. Before I used port-forwarding ssh would correctly say that it couldn't get traffic from the router.
My router is a cheap solution to another problem I had, but it should work like any router. It's a Sitecom WL-607. I disabled login authentication for the moment. Also, there is no filtering going on in the firewall. Like I said earlier, I don't get iptables, so that's not being used. The hosts file allows all and denies nothing.
TLDR version; I'm using port-forwarding on my Sitecom WL-607, but all ports except http and the 53 port are being blocked.
Is there something I'm missing here?
Thanks in advance,
Neal van Veen.

by default, all routers assign there clients an ip address from there internal pool of addresses, your wireless router is assigning you that address and then NAT's the connection with the WAN side, but even after directly plugging in to the wall socket you still dont get a new ip address, use dhcpcd <mydev> in terminal to reresh dhcp lease. if not then your campus/location/etc may also be using NAT on there own side.
as for the ports, iptables doesnt block any traffic by default, it allows everything. if there is filtering, it is from your wireless router.
on the above ssh and nmap scans, did u use your lan ip, or your public ip.

Similar Messages

  • Port forwarding for SSH not working on WRT54G2

    Hi,
    I have forwarded a few ports, but can't get port 22 for SSH to work. I can SSH from within LAN, so that works. And I can access FTP from outside the LAN, when I forwarded that port. But to the same computer where I can access FTP I can't access SSH...
    Would be grateful for assistance. Btw, I'm using dynamic IP (through DynDNS, but not using the DynDNS tool in the Linksys interface). I've tried with both the dynDNS domain and the IP address. And I have set a fixed IP address on the server I try to access.
    Thanks,
    Daniel

    Make sure that if you are forwarding the port nos for SSH on WRT54G2 you need to forward it for the assinged static ip address & it should work great..just try it once.

  • Trouble with port forwarding, DHCP, VUZE, and downloading speed.

    I am using Vuze to download things. I have a slow download speed and yellow smiley face, indicating a NAT problem. I think I need to implement a port forwarding, but that requires a static IP address. My router and security is set up such that I CANNOT connect to the internet using a manual configuration--DHCP only. However, I always have the same IP address. This is because the wireless router--a Motorola SB900--will only recognize approved computers designated by the IP address.
    Can anyone advise on what to do next?

    Enmnm wrote:
    I am using Vuze to download things. I have a slow download speed and yellow smiley face, indicating a NAT problem.
    Here are two links that will rate your connection.
    http://www.speedtest.net/
    http://www.pingtest.net/
    You can try downloading directly from the terminal to see how fast one file downloads.
    Macintosh-HD -> Applications -> Utilities -> Terminal
    mac $ mkdir test
    mac $ cd test
    mac $ curl "http://www.apple.com" >see
      % Total    % Received % Xferd  Average Speed   Time    Time     Time  Current
                                     Dload  Upload   Total   Spent    Left  Speed
    100 11292  100 11292    0     0  22628      0 --:--:-- --:--:-- --:--:-- 62623
    mac $ cat see
    <!DOCTYPE html>
    <html xmlns="http://www.w3.org/1999/xhtml" xml:lang="en-us" lang="en-US">
    <head>
    ... clipped ...
    I think I need to implement a port forwarding, but that requires a static IP address. My router and security is set up such that I CANNOT connect to the internet using a manual configuration--DHCP only.
    you are dealing with two networks. There is a network between your computer and your router. There is a second network between your router and your ISP.
    Port-forwarding is from your router to your computer.
    http://www.portforward.com/english/routers/port_forwarding/Motorola/SBG900/Azure us.htm
    However, I always have the same IP address. This is because the wireless router--a Motorola SB900--will only recognize approved computers designated by the IP address.
    Can anyone advise on what to do next?
    You need to set Port-forwarding between your computer and your router. You will need a fixed IP address on a your Computer. There is to ways of doing this. You can set up a static IP address on your computer. A hack would be to add 10 or 20 to your IP address that your router gives out. For example if your router gives out 192.168.1.10 you of would add 10 to the ten giving 192.168.1.20. you need to make the addition to the right most number of which in the example is ten.
    The section way is . . . You can have your router a signed a fixed address based on your MAC address. ( Each Internet device has a fixed address that is called the MAC address. This is a different address than your IP address. the MAC address is assigned in the factory. )
    Another hack would be to Port-forward to the number your router assigned at random. If your Computer is the only computer on the router, the number should always be the same. It is a hack because this is not guaranteed.

  • Port forwarding, NAT, QoS..

    I have a LinkSys E3000, but I'm having mad problems with QoS & port forwarding. I've tried the following:
    Port range forwarding, from port 53 to 3074, to the IP of my xbox. My understanding is that it opens all ports in that range. Moderate NAT.
    Single port forwarding, 53, 80, 88, 3074 (all both UPD & TCP - and the ports it says to open on portfoward.com), to the IP of my xbox. Moderate NAT.
    DMZ, putting the IP of my Xbox in the DMZ. Moderate NAT.
    DMZ, putting the MAC address of my Xbox in the DMZ. Moderate NAT.
    I've no idea why none of the above work? I've also set the QoS to give my Xbox high priority (it is another option under Gaming & Applications alongside Port range forwarding, port forwarding, DMZ), so I doubt that is working either.
    The only thing that gives me open NAT is if i have uPnP enabled (none of the above have any effect at all), but the connection is very dodgy. Voice chat is choppy, bit of lag in game, even when I'm the only one using an 8Mb connection (it was fine on a basic netgear router before, when no one else was on, but now I can't even get that far). I believe it should work without uPnP and with the above options I've set.
    Even if the lag is sorted, it doesn't even begin to solve the QoS problem that I bought the router to fix.

    Who is your internet service provider is that cable or DSL connection
    Please let  me know so that Acoordingly we can decide whether we should go for port range triggering or port range forwarding

  • How to port forward with Modem and Router

    I have a Linksys AM300 Modem and a Linksys WRT610N router. 
    I want to forward ports for Call of Duty Modern Warfare 2 and STEAM.
    How do I port forward when I have 2 devices and how can I test that it is working? 

    I would recommend that you reconfigure your AM300 into bridge mode. In bridge mode it operates like a standard modem would do. Then reconfigure the WRT610N for your internet connection, i.e. most likely PPPoE. Now the WRT has a direct connection into the internet. Now you only need to configure port forwarding on the WRT610N.

  • Port forwarding for PSP and Wii

    I know the Xbox and PS3 set up static port forwarding across the BT Hub using UPnP. Does anyone know if the Play Station Portable or the Wii set up static port forwarding using UPnP in the same way for on line game play?  
    Thanks
    Solved!
    Go to Solution.

    Wii works for me as a straight connection, no need of port forwarding.
    Ray.

  • Port forwarding with e4200 and 660 embarq modem

    Hello, I have a e4200 router, And a 660 series modem, I'm trying to portforward for a game called minecraft, I cannot seem to get the ports to open, I've called Century link they told me to put my modem in to bridge mode, So I did they said my IP should be public not private now, It is still private, What Am I doing wrong.
    Solved!
    Go to Solution.

     It is necessary to set your modem to FULL BRIDGED MODE so that your router will be able to handle all of your Internet traffic and to avoid conflicts with your ports. You can check for the status of the IP address on the router web interface. Here are the steps:
    A] With the help of Cisco Connect Software (if at all you have installed the router with the help of this software)
    1] Open the software and go to the option which says "Router Settings"
    2] Then click on the option which says "'Advanced Settings" which will take you to the router's configuration page.
    3] Click on the Status tab look for the Internet IP address that should be public ip address.
    You can do some more settings as well on the router.
    4] Click on setup tab and change the MTU into Manual and enter 1365 for the Size.
    5] Click the security tab and uncheck 'Filter Anonymous Internet Requests'.
    B] If you haven't installed Cisco Connect then you can log on to the router's user interface using it's default IP address in the browser which is 192.168.1.1 and type in 'admin' as the password leaving the username field blank. This will take you to the router's web interface and then follow steps as mentioned above to make the changes.
    After doing the following settings then check the connectivity...

  • Port Forwarding with Airport Express 802.11n Utility version 6.1

    Hi all,
    Quick question, hoping it can be solved with a quick answer
    Not sure what I'm doing wrong: I'd like to set up port forwarding for Skype and Transmission, however in the airport utility even when I assign the public/private ports to the ones specified in the respective programs (with the IP address for the machine I am using), if I go into Transmission or onto a port checker website the connections are shown as closed for the ports I have selected (on the public side).
    I've made a DHCP reservation for this machine to tie it to a given IP address, and I've enabled NAT port forwarding protocol in the Network options (no default host so far).
    Also, in case it makes a big difference, right now I'm connecting to the internet via a Cisco DCP3825 cable modem running in bridge mode, with the AEBS in DHCP and NAT router modes.
    Any tips?
    Thanks!

    Sadly I never got it to work. I called up Apple and they claimed that all the ports are open for the Airport Express, but if I run port scanner in Network Utilities none of the ports I specify show up as open unless I select one of the "Default" port categories like "Windows File Sharing". I told this to the person I spoke to on the phone, and they replied several times in a row that they are not allowed to help set up port forwarding, that they can only provide info on how to open the ports, and that even if the ports are subsequently not opened or forwarded they can't provide any assistance. It wasn't a very good conversation. Unfortunately, based on some of the other disucssions I've looked at in this forum, it doesn't seem possible to do conventional custom port forwarding using this version of the Airport Utility. Hopefully someone will correct me though. Sorry I can't be more help.

  • Port Forwarding with Verizon-Br​anded Action GT704-WG

    I am new to the forums, and I am already overjoyed with the 30 minutes I spent figuring out that the login mechanism does not even work with browsers other than IE7/8.  Lots of fun to start.
    I live in a residential building with the residential High Speed Internet Plan.  I assume this is the case because it is a DSL line and they are not using business grade, or I do not think I would be having these problems.
    I have spent many hours trying to figure out how to port forward with the above-mentioned router/modem/gateway/**bleep** extraordinnaire.  I am in IT professionally, and I am tired of feeling **bleep**.  I called Verizon tech, but they were very unhelpful unless I pay for a premium tech service to figure out port forwarding problems.  And yes, I have read the info on port-forward.com numerous times for this device.
    Essentially, I want to forward an arbitrary port, let's say 6336, to a server running Ubuntu 9.10.  I have put this computer in the DMZ using the web interface.  I have also set up a mapping rule to forward 6336 (all three entries pointed to 6336 in the Security/Applications/Forwarding section, following docs on port-forward.com for this specific model AND Verizon's own documentation).  Occassionally, I can see the service is viewable from the likes of canyouseeme.org.  Nonetheless, I cannot access the port: I get a connection refused error when using ssh on this port.  Yes, I correctly configured ssh on the DMZ server/host to respond to the non-standard 6336 port, and I have tried it with the server's firewall system (ufw/iptables, for the curious) enabled and disabled.  It NEVER works.
    Some posts here have indicated I might need a static IP assignment.  That can be done only client-side (meaning the Ubuntu server in the DMZ), if I understand people saying it is not possible to do static assignments from this **bleep** gateway, so I am not sure if that should matter (I wonder what happens with this **bleep** when two computers try to demand the same static IP; dare I guess that he asks first wins?).  I cannot recall if I have uPnP enabled or disabled as I am at the office right now, but I believe it is off.  Not sure if this matters either.  If I am wrong, I would love if someone could let me know.  I am at a loss and sick of dealing with such a simple problem.  I would really appreciate the help. 
    Solved!
    Go to Solution.

    Ok.
    #1 On your computer setup a Static IP.
    This means following the directions at http://www.cyberciti.biz/tips/howto-ubuntu-linux-c​onvert-dhcp-network-configuration-to-static-ip-con​...
    #2 The Static IP must be outside of that DHCP range of the router. So, this means your IP has be above 1 but below 64.
    #3 In the router forward to the IP Address that you setup on the computer.
    OR if the router can give the computer the same IP Address each time, you could do that.
    If you are the original poster (OP) and your issue is solved, please remember to click the "Solution?" button so that others can more easily find it. If anyone has been helpful to you, please show your appreciation by clicking the "Kudos" button.

  • Port forwarding - Sunluxy DVR (CCTV) and BT Home H...

    I have spent the last 24 hours trying to connect wirelessly with my CCTV images. For some reason, no matter what settings I try nothing works. 
    The Sunluxy network set-up guide is poor, if I am honest, the only instruction is to use web port 80 or 8080 and data port 8888.
    I have tried to connect through my BT Home Hub using the following settings (without success)
    BT Hub
    IP 192.168.1.50
    Port range
    ANY - 8080 - 8080
    ANY - 8888 - 8888
    UPnP - Off
    On the DVR I currently have the following settings
    IP 192.168.1.50
    Gateway 192.168.1.254
    Web 8080
    Data 8888
    Subnet mask 255.255.255.0
    Preferred DNS 192.168.1.254
    Any ideas what I am doing wrong?
    Any help would be gratefully appreciated.
    Charlie 
    Solved!
    Go to Solution.

    These pages should help.
    Port forwarding problems
    CCTV and IP cameras - port forwarding
    There are some useful help pages here, for BT Broadband customers only, on my personal website.
    BT Broadband customers - help with broadband, WiFi, networking, e-mail and phones.

  • FiOS and World of Warcraft...Port Forwarding Issue

    So for some reason ever since I got FiOS I havent been' able to connect to WoW. Last night I tried to tackle the problem. I following the directions on portforward.com to forward the port in my router. I set it up but when I try to check for the open port via a port check website is says the port ISNT open.
    I am using an iMac G5 with a Westel router. anyone else experience this problem? If so how did you fix it. I called Verizon support and was informed that 'port forwarding is unsupported and we won't help you'
    About ready to cancel FiOS and go back to cable.

    #1 Are you trying to connect to other users OR are you trying to allow other users from the net to connect to you?
    #2 Which port checker site did you use?
    #3 I know that it did not say open OR Success. What did it say?
    #4 What is security level of the router set to? In the guides for that router, they show typical (medium).
    ^^^
    If you are the original poster (OP) and your issue is solved, please remember to click the "Solution?" button so that others can more easily find it. If anyone has been helpful to you, please show your appreciation by clicking the "Kudos" button.

  • Port forwarding in Solaris 8

    Hi,
    I am new to Solaris and am trying to set up a simple port forwarding from port 80 to 8080.
    I know how to do this in Linux:
    iptables -t nat -I PREROUTING -p tcp dport 80 -j REDIRECT to-port 8080
    but cannot find a way to do this in Solaris. I have installed SunScreen, but am not sure whether this is the right thing to use.
    This is a simple server in a hosting centre.
    Can anyone help?

    In solaris you can do port forwarding with ssh . You have to install SSH from soalris 2 of 2 CD .
    see man pages of ssh
    Regards

  • Port Forwarding for Cisco ASA 5505 VPN

    This is the Network
    Linksys E2500 ---> Cisco ASA 5505 ---> Server
    I beleive I need to forward some ports to the asa to use the IPsec VPN I just setup. I had the SSL VPN working but only needed to forward 443 for that....I assume that IPsec tunnel is a specific port.
    Thank You

    For IPSec VPN, you need to port forward UDP/500 and UDP/4500, and remember to enable NAT-T on the ASA.
    Command to enable NAT-T on ASA:
    crypto isakmp nat-traversal 30

  • HH3 Type B port forwarding not working.

    Hi there.
    I have searched absolutely everywhere for a solution to my problem before posting here. Basically port forwarding isn't working at all on my HH3 Type B router.
    I've read all about the problems people have had with the Type A's but as far as I see nobody seems to have a problem with the Type B in regards to port forwarding or loopback.
    I've set up port fowarding on many different routers with many different ISP's so I don't think it's something I'm doing, or rather, not doing but you never know.
    These are the steps I take when setting up port forwarding:
    Firstly setting up my static IP (obviously only needed to be done once) which I've chosen one outside of the routers DHCP range as I've always done in the past. Then I open the router screen, go to Settings / Advanced Settings / Port Forwarding / Supported Applications and click "Add new game or application".
    I then enter a name, change "Copy existing game or application" to "No", and then change the "Protocol" to UDP or TCP as needed (also have tried using "Any" too with no luck). Next add a "Port Range" for example 12345 - 12345 then add "Translate To" 12345 - 12345 (port ranges obtained from portforward.com per application) then click "Add" and repeat for additional ports as needed.
    Once that is all done, click "Apply" then go to Port Forwarding / Configuration or go to Home Network, select the applicable device and choose the newly added application from the "Port Forwarding" drop down list (and choose applicable device if doing it from Port Forwarding / Configuration). Click "Add" once application is selected.
    Add additional applications where needed then finally click "Apply" to store the forwarded ports.
    Close router page and port forwarding should be fully setup and working.
    That's basically how I would do it anyway, but I also checked on portforward.com and it says pretty much the same and on these forums as well as a few other sites and I see nothing different but port forwarding still isn't working.
    In my router "Event Log" it does show "The Port Forwarding entry of [xxx.xxx.x.xx] has been added or modified.".
    My Firmware version is V100R001C01B036SP03_L_B. Last updated 19/05/13.
    I have no firewall on my pc and the one enabled on the router is set to default but have also tried disabling it. Have tried enabling DMZ as suggested in various places with no luck and have tried changing UPnP settings again with no luck.
    So if anybody has any suggestions I am all ears because this is bugging me so much as there are a few applications and games that require port forwarding and are pretty useless without it really.
    Thank you.

    If you follow the instructions on this page, it should work. Please see note about CG-NAT.
    Port forwarding problems
    There are some useful help pages here, for BT Broadband customers only, on my personal website.
    BT Broadband customers - help with broadband, WiFi, networking, e-mail and phones.

  • BM 3.8 Port Forwarding?

    Hello,
    Does Bordermanager port forward? I am using Groupwise 6.5 along with
    bordermanager, web access, vpn and other things on the same box.I am
    installing a Barracuda Spam Firewall hardware appliance that I need to
    redirect all mail traffic to and then back into GW. The problem is my
    public mail address is also used for web,vpn etc. so I can't simply NAT to
    the barracuda. I would like to simply port forward port 25 of my public
    address to the Barracuda private address and then on to the GWIA.
    A collegue told me there is no port forwarding in BM and that I would have
    to add a secondary public address, change my MX record, and static NAT to
    the Barracuda with that. While that sounds like a reasonable approach I
    would like to avoid changing my MX record and be able to easily go back and
    forth while I test the barracuda appliance. This is a live corporate email
    system and I need to cause as little disruption as possible.
    If there is a way to port forward SMTP traffic to a private address please
    let me know the best way to do it . THANKS!
    -Dave

    Thanks very much for your reply! I will defnitley give the generic proxy a
    try. Thanks for the tip about changing the proxy.cfg file. Are there any
    other potential gotchas on using this proxy? Any other BM configs that need
    to be adjusted to make this proxy work? Also where exactly is proxy.cfg? I
    have not been able to find it on my Bordermanager server.
    -Dave
    > BM doesn't have true port forwarding, but it has a similar function:
    > Generic TCP proxy. With it, you configure BM to proxy (forward) TCP
    > traffic on a specific pulbi IP/port to a specific server/port on the
    > private LAN. However, by default BM won't let you create a generic TCP
    > proxy on port 25, because it conflicts with the SMTP proxy (another
    > feature of BM, which you don't want to use :-) To get around that you
    > need to add this to the [Extra Configuration] section of the proxy.cfg
    >
    > AllowGTCPProxyToUsePort25=1
    >
    > Good luck with the Barracuda... we love ours :-)
    >
    > --
    > Jim
    > Support Sysop

Maybe you are looking for

  • Need help restoring original desktop after crash and new install

    Question: is there a way to restore my original desktop? My system starting giving me kernel errors. I was running Member when it crashed. I did a restart and the mouse would no longer work. Tried starting in safe mode. Mouse still refused to work. R

  • Are there Apple translated (i18n) resource files ("out-of-the-box") for Objective C?  In the SDK?

    Hello, experts: From previous experience, I know that both Adobe and Oracle provide some "out-of-the-box" translations for their respective UI language.  I'm new to Apple development and Objective C and looking to determine if any such localization s

  • Help with scritping

    I really need to include the file name in the footer of each Pages document, preferably automatically (so I don't forget to change the name when I 'save as...'). Pages cannot not do this as it has no equivalent of Word's fields. So I tried to write a

  • HT204088 How can I cancel an on line dating service app I purchased on my Iphone?

    I purchased "Zoosk" On line dating app on my Iphone 2 months ago.  I want to end the service but I wasnt able to do it on my phone.  It has charged me now for 2 months that I didn't want. I need to end it before it charges me again for May.  Help!

  • Windows 7 64 bit cuts video ram in two

    Well, i just bought the new Imac 21.5 I configured it with and 2.8 i7 prosessor, and 8 gb ram. It came with a 6770 512 mb video card. I am very satisfied with the imac but i installed windwos 7 64bit trough bootcamp, and if i type in dxdiag in the se