NAT 1:1

Started by rl82, July 29, 2021, 03:35:23 PM

Previous topic - Next topic
Print
Go Down Pages 1 2
User actions
August 03, 2021, 02:40:51 PM #15
is interesting that i can ping only .101 (port forward virual ip) and not .102 (1:1 NAT virtual ip).
ssh no success
August 03, 2021, 10:13:16 PM #16
Quote from: rl82 on August 03, 2021, 02:40:51 PM
ssh no success

Can you make sure the SSH server is installed and running?

sudo apt-get install openssh-server
systemctl status sshd

Bart...
August 04, 2021, 09:55:38 AM #17
Quote from: bartjsmit on August 03, 2021, 10:13:16 PM
Quote from: rl82 on August 03, 2021, 02:40:51 PM
ssh no success

Can you make sure the SSH server is installed and running?

sudo apt-get install openssh-server
systemctl status sshd

Bart...

thanks Bart for your help.
You mean to install  it in webterm?
August 04, 2021, 03:55:36 PM #18
ubuntu1 - the server that sits behind your 1:1 NAT
August 10, 2021, 09:08:23 AM #19
sorry Bart, i am not sure i understood.
Might you be please so kind to explain me better?
Do you need some screenshot regarding the configuration?

Thanks :)
August 10, 2021, 09:13:26 AM #20
You are trying to SSH to a server behind 1:1 NAT. Bart asked you to check and make sure that SSH is running on that server. Might be simply not active ...
Deciso DEC750
People who think they know everything are a great annoyance to those of us who do. (Isaac Asimov)
August 10, 2021, 10:43:01 AM #21
thanks
here are the output
August 10, 2021, 11:40:24 AM #22
Can you confirm it works now from your local LAN and from the WAN side of your 1:1 NAT?

There may be a host firewall on ubuntu1 that limits access (UFW in that case). If it doesn't work from your LAN, ensure SSH is allowed from everywhere (at least temporarily for testing)

Bart...
August 10, 2021, 01:45:12 PM #23
Hallo Bart,

i am sorry but i have difficulties to understand the goal:

my problem is that i am able to reach the webserver on ubuntu with his private address (192.168.56.3:81) although i set the NAT Port  Forwarding and the NAT 1:1. I see that if i disable the NAT port forwarding the problem still persists while if i disable the NAT 1:1 the problem is solved, so i assume there is some misconfiguration on the NAT 1:1.
August 10, 2021, 02:14:51 PM #24
To me the goal of 1:1 NAT is for traffic parity on the WAN side. The destination address for traffic to your server from outside  is the same as the source address of the return traffic. This solves a lot of issues with NAT (but not all).

Once that bit works, you can worry about other issues.
August 10, 2021, 02:31:40 PM #25
Hello Bart,

thank you for your answer. What you mean with "traffic parity" please?
can be that this options has enabled this bug?
"block private network disabled"
August 10, 2021, 02:41:53 PM #26
I can do ssh from internal browser webterm-1
no ssh from external browser webterm-2
August 11, 2021, 02:36:02 PM #27
so i am not able to solve it  :-X
i will hit my head in this hours and i will find it out.
If i find the solution, i will post it and share for the community :)
thanks everybody
August 13, 2021, 09:41:47 AM #28
so no success.
The problem persists: the private ip address of the webserver (192.168.56.3) is REACHABLE from WAN (external network) when i add the NAT 1:1 Rule.
Print
Go Up Pages 1 2
User actions