Ssh question



  • When I am on my private network, I can ssh from host to host successfully.  I set up a nat rule to redirect sash traffic to a host on my internal network.  I get a login prompt, but can not successfully log in from the Internet.

    My network consists of a 2wire dsl modem acting as a nat to Internet.  The private side of the 2wire is the DMZ and the WAN interface of pfsense. The pfsense acts as a NAT to the private LAN.  The ssh host is on the private LAN.

    Any suggestions where to look to fix this?

    -rj



  • did you rule out the possibility that your ssh server on the internal network rejects connections from a public ip ?



  • I'd check the SSH server logs, possibly increasing the logging level if required. It should help you identify the problem.



  • One time I saw this but was only two nat rules on same port to distinct servers.

    I was trying to reach server1 but it was going to server2  :D



  • I only have one nat rule defined - the ssh one, so that rules out that possibility.

    Thanks for the suggestion!



  • @heper:

    did you rule out the possibility that your ssh server on the internal network rejects connections from a public ip ?

    I have not done that yet.  I am still relatively new to sshd - I did not notice that as an option Inthe config file.  I'll take a look for it.  Thanks.



  • @Cry:

    I'd check the SSH server logs, possibly increasing the logging level if required. It should help you identify the problem.

    Thanks for the advice. I'm glad to see the lack of 'me too' responses. I'm hoping it's a ssh config problem on my server.  My fear was that it could be a pfsense issue, but the general tone of the replies indicates that's not the likely problem


Locked