NETGEAR is aware of a growing number of phone and online scams. To learn how to stay safe click here.
Forum Discussion
Solved
Local SSH works, remove SSH fails even with port-forwarding
I have enabled SSH, and locally works fine for the accounts that have SSH enabled. However, when I port forward port 22 to the NAS, it doesn't respond when trying to use SSH (on laptop/phone when...
I enabled DMZ on the router to point to the NAS and works fine - so it's the router 🙂
Thanks for your input guys - I haven't done basic h/w troubleshooting for several years now, so a revisit is always good.
Note: I've secured the NAS now that I know what was causing the issue.
When trying to log in, it's not even prompting for anything. When using an external IP not related to the NAS external IP (ie not LAN IP's), it appears to not respond at all (no banner, login, etc.). I switch to the NAS public IP (NAS is within a LAN), and the login prompt appear fine.
It appears there's a external IP blocker or external IP blacklist, since the LAN IP's work and the External IP of the NAS works fine too. I don't recall setting one up (fail2ban, hosts, etc.) but hen again, it's been awhile since I did anything with the NAS....
Not running fail2ban, the /etc/hosts.deny is empty, /etc/hosts.allow is empty
and /etc/hosts has the following:
127.0.0.1 localhost
::1 localhost ip6-localhost ip6-loopback
fe00::0 ip6-localnet
ff00::0 ip6-mcastprefix
ff02::1 ip6-allnodes
ff02::2 ip6-allrouters
127.0.0.1 ********* loghost # added by readynasd:ads
iptables -L INPUT -v
Chain INPUT (policy ACCEPT 9851K packets, 2542M bytes)
pkts bytes target prot opt in out source destination
9847K 2542M all -- bond0 * 0.0.0.0/0 0.0.0.0/0
1011 80512 tcp -- bond0 * 0.0.0.0/0 0.0.0.0/0 tcp dpt:22
0 0 tcp -- bond0 * 0.0.0.0/0 0.0.0.0/0 tcp spt:22
What readynas model do you have, and what fimware is it running?
NETGEAR Academy
Boost your skills with the Netgear Academy - Get trained, certified and stay ahead with the latest Netgear technology!
Join Us!
