[Wlug] charter.net & ssh

Charles R. Anderson cra@WPI.EDU
Thu, 10 May 2001 15:02:41 -0400 (EDT)


Are you doing uni-directional NAT on the Linksys?  Are there any firewall
rules defined on the Linksys?

In addition to allowing packets from outside to port 22 on your SSH
server, do you allow outgoing packets from your SSH server on port 22 to
local ephemeral ports (1024-65535) on the outside clients?

Traceroute also uses either ICMP (Windows) or UDP+ICMP (Unix) to high
numbered ports.

On Thu, 10 May 2001, Bill Mills-Curran wrote:

bcurra> It never makes it.  BTW, if you're looking to try this
bcurra> yourself, I've turned off the forwarding on my router.  I
bcurra> probably should have left it on so that I could work with
bcurra> the Charter people.

bcurra> 13  24-216-218-3.hsacorp.net (24.216.218.3)  5.489 ms  5.842 ms  6.198 ms
bcurra> 14  10.254.1.2 (10.254.1.2)  6.192 ms  9.664 ms  6.756 ms