cannot telnet on external IP

0

I am a newbie to networking, so need some help to understand if what I am doing is right:

I have a VM which hosts a Ubuntu guest OS with an internal IP: 192.168.15.6 I have setup an ssh server on port 8002 (in case the ISP blocks 22). I also have a web server (Apache 2) setup on port 8012 (in case the ISP blocks 80).

My external IP is: xx.yy.aa.bb. I have configured my router to port forward port 8002, and now I am able to acces my web server from an external box. But going by the same pattern, I port forwarded my ssh port as:

source ip: xx.yy.aa.bb
source netmask: 255.255.255.0

destination ip: 192.168.15.6
destination netmask: 255.255.255.255 (I cannot change this)

destination port start: 8002
destination port end: 8002
destination port map: 8002

Why am I not able to telnet into my machine?

Neel

Posted 2013-08-21T17:57:01.540

Reputation: 111

2telnet and ssh are not the same thing. If you are not listening for telnet (ie a telnet server and have telnet forwarded as well, telnet will hit the firewall and be blocked). Can you ssh in with putty or another ssh program? – MaQleod – 2013-08-21T18:13:20.580

Does SSH work when you try to SSH to 192.168.15.6:8002 from another computer on the internal LAN? Instead of externally? – j_bombay – 2013-08-21T21:12:50.017

1If you can't SSH from inside your LAN between two machines you need to fix that first before you try port forwarding it. – Scott Chamberlain – 2013-08-21T21:54:07.677

No ssh does not work externally either, it works internally only... pardon my ignorance, but do i need to setup a telnet server separately and port forward it as well to expose the ssh server as well? – Neel – 2013-08-21T21:58:38.807

If SSH works internally, but not externally, then the traffic is being blocked somewhere on the external connection (probably the firewall). By default, most applications use 22 with SSH, so be sure you are specifying 8002 (which you probably are if you can connect internally, but just want to make sure). If you can connect to the HTTP server internally and externally, then it isn't a NAT traversal/reflection issue. Can you post the config for the forwarder that works (the http server)? And no, you don't need a telnet server unless you need it too (which I do not recommended - not secure). – MaQleod – 2013-08-22T15:40:33.520

Answers

1

Its difficult to understand the question and config properly, but why have you specified a source IP and netmask - it would seem to me this should not be specified, or be 0.0.0.0 in each case.

My guess is that it is only forwarding requests coming from xx.yy.aa.X (where X is 1-254), when what you want is to forward anything it sees.

davidgo

Posted 2013-08-21T17:57:01.540

Reputation: 49 152

I tried that option too - same result.. – Neel – 2013-08-21T21:59:27.433

Asked: 2013-08-21T17:57:01.540

Viewed: 1 343 times

Active: 2013-08-21T20:54:19.377