Buy or Renew
Buy or Renew
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
5947
Views
0
Helpful
21
Replies

Port Forward ssh to internal network

Go to solution
costabunny
Level 1
Level 1

‎07-17-2007 03:13 PM - edited ‎03-03-2019 05:54 PM

Hi (I am cisco newbie as I am a Solaris SCM by trade so forgive my lack of knowledge).

I have a Cisco 837 Router with ADSL (dynamic) configured on it. I have a solaris box and a linux box on the network (both listening to non-standard ssh ports) and want to access them from my office via PuTTY.

I have been unsuccessful in configuring the router to forward any requests from the outside to either of these machines on the inside. basically I want (for example) the outside request (I use the current IP using ddns) at port 10022 to be forwarded to the machine inside the network at 10.10.10.6:10022 - Sounds simple and my old Linksys had no problems with this. I have had our cisco guy from work spend an evenig trying to resolve it, but alas even he is flumoxed!

(all systems inside have static ips and all in one subnet).

Rachel (pulling hair out)

Labels:
0 Helpful
21 Replies 21

Go to solution
costabunny
Level 1
Level 1
In response to olafmarcos

‎07-18-2007 10:58 AM

show ip nat translations gives:

Pro Inside global Inside local Outside local Outside global

tcp 212.120.230.38:2008 10.10.10.2:2008 207.46.111.77:1863 207.46.111.77:1863

tcp 212.120.230.38:10023 10.10.10.6:10023 --- ---

tcp 212.120.230.38:2080 10.10.10.2:2080 72.14.217.91:80 72.14.217.91:80

Yes I have no problem logging into 10.10.10.6:10023 and 10.10.10.9:10022 from inside using PuTTY (the 10023 is the one I am most concerned with getting up)

Thanks :) heres hoping light will be shed...

0 Helpful

Go to solution
olafmarcos
Level 1
Level 1
In response to costabunny

‎07-18-2007 11:04 AM

And the server 10.10.10.6 can browse without problems?

Greetings,

0 Helpful

Go to solution
costabunny
Level 1
Level 1
In response to olafmarcos

‎07-18-2007 11:11 AM

hmmm never looked at that - Its a linux box that I use primarily as a console box/ssh gateway (meaning I used to ssh into it thru my old Linksys then ssh from that box to my solaris machines) - I dont have a gui on there so I havent tried browsing. A quick ping http://www.bbc.co.uk resulted in nada so I am checking its routes etc right now (tho it has no trouble in accessing my remote offices in London via the sw vpn) - odd probably just cant find the dns servers......)

I will check it out and be back in a mo

cheers

edit: yep now it can ping www.bbc.co.uk .....

still no connection from outside :(

0 Helpful

Go to solution
costabunny
Level 1
Level 1
In response to olafmarcos

‎07-19-2007 01:43 AM

Wow (and wierd) but I got to the office this morning and immediately ssh'd to my linux box at home :)

thanks for all your help guys, but I am somewhat curious as to why when I tested from home it doesnt work. (I admit I should have RDC'd to my work PC and tried from there but as I couldn't see it I thought I wasn't at that point.

I was using a putty session on my windows PC at home to ssh to the linux box via my external IP:10022 and it could not connect. Yet here at wotk I can connect.? Is there something in my config that is preventing the portforward from working from within my network when going out and back in again?

Anyways on to my EasyVPN next (hopefully I can get that up without to many hassles (connecting to a 3000 series)

Thanks again all of you for your paitence and advice - I will certainly be here with more questions as I do more things on my learning voyage with cisco

0 Helpful

Go to solution
olafmarcos
Level 1
Level 1
In response to costabunny

‎07-19-2007 07:20 AM

Ummmmm...

It should run without problems from RDC session to your work from home. I do everyday.

May be nat entries in the cache...

Try again from home and try to open SSH session with other server, not your home.

Regards,

0 Helpful

Go to solution
costabunny
Level 1
Level 1
In response to olafmarcos

‎07-19-2007 09:32 AM

Hi Just got in and yep I can VPN to the office, run up an RDC to my office PC and successfully SSH to my linux box here.

What I am still unable to do is fire up an ssh session from my home windows box (using either my current public IP or the DDNS url) to the linux box (Using the exact ssh session template as at work (I just copied it from there) ? bizzare or normal behaviour?

Anyhoos THANKS ALL X X X X X X X

(what a great bunch you are)

0 Helpful

Go to solution
olafmarcos
Level 1
Level 1
In response to costabunny

‎07-19-2007 05:46 PM

If you are trying to open a ssh session directly from home to your public address is normal. You can't access your internal servers using public address, unless you do other nats. But when you connect to your internal servers you should use internal ip addresses.

I thught you tried to open ssh session from office RDC connection.

Regards,

0 Helpful
Customers Also Viewed These Support Documents