RE: Cannot SSH from outside LAN

From: Young, Randy (RWYoung_at_verisign.com)
Date: 05/05/05

Next message: Corey: "bash_logout and sftp"

Previous message: Christ, Bryan: "AES Vulnerability"
Maybe in reply to: Nick: "Cannot SSH from outside LAN"
Next in thread: Stephen Warren: "Re: Cannot SSH from outside LAN"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]

Date: Thu, 5 May 2005 09:30:37 -0700
To: <Nick@excite.com>, <secureshell@securityfocus.com>

I would say it's either a firewall blocking you, or an ACL on a router.

Randy Young

-----Original Message-----
From: Nick [mailto:sundog2000@excite.com]
Sent: Monday, May 02, 2005 10:00 PM
To: secureshell@securityfocus.com
Subject: Cannot SSH from outside LAN

I have an OpenSSH server running on Windows 2000, my router forwarding
from port 8000 to the SSH server. When I am on my local LAN, I am able
to connect to the SSH server (even on the external IP address, and
external port), but when I try to connect from a machine outside of my
local LAN, it hangs. Here is sample output from it hanging:
****
:~> ssh 12.210.8.XXX -p 8000 -l sundog -vvv OpenSSH_3.7.1p1, SSH
protocols 1.5/2.0, OpenSSL 0.9.6g 9 Aug 2002
debug1: Reading configuration data /etc/ssh/ssh_config
debug2: ssh_connect: needpriv 0
debug1: Connecting to 12.210.8.XXX [12.210.8.XXX] port 8000.
debug1: connect to address 12.210.8.XXX port 8000: Connection timed out
ssh: connect to host 12.210.8.XXX port 8000: Connection timed out
****
If I connect from within the local lan it connects:
****
$ssh 12.210.8.XXX -p 8000 -l sundog -vvv OpenSSH_3.6.1p1+CAN-2004-0175,
SSH protocols 1.5/2.0, OpenSSL 0x0090702f
debug1: Reading configuration data /etc/ssh_config
debug1: Rhosts Authentication disabled, originating port will not be
trusted.
debug2: ssh_connect: needpriv 0
debug1: Connecting to 12.210.8.XXX [12.210.8.XXX] port 8000.
debug1: Connection established.
*****

Please advise!
Thanks,
Nick

_______________________________________________
Join Excite! - http://www.excite.com
The most personalized portal on the Web!

Next message: Corey: "bash_logout and sftp"

Previous message: Christ, Bryan: "AES Vulnerability"
Maybe in reply to: Nick: "Cannot SSH from outside LAN"
Next in thread: Stephen Warren: "Re: Cannot SSH from outside LAN"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]

Relevant Pages

Re: SSH through wireless router
... When you say that I should try ssh ... Connection closed by remote host ... When I went to sshd to port 2222: ... debug1: read PEM private key done: type RSA ...
(Debian-User)
Re: How to GCC? - Bill Campbell/or anybody
... his end of the ssh connection. ... ssh extensions and commonly forward port 23 to localhost on the remote ... This allows me to use any terminal emulator on the Windows machine ... the LAN ip of the 3.2v4.2 system. ...
(comp.unix.sco.misc)
Re: Shutting down a machine that has GPU locked up?
... be able to connect to your ssh port, ... depends on how much you trust your LAN and your ssh passwords. ... firewall to blacklist any ip that tries to port scan my server. ...
(comp.os.linux.misc)
Solved - SSH cant connect
... I can ssh to any of my laptops on my local lan but not across the internet. ... Starting sshd: debug1: sshd version OpenSSH_5.4p1 ... Server listening on 0.0.0.0 port 22. ...
(Fedora)
Re: SSH commands to HMC
... debug1: Reading configuration data ... debug1: connect to address 10.26.10.21 port 22: ... Connection timed out ... ssh: connect to host 10.26.10.21 port 22: Connection ...
(AIX-L)