Solved

HOWTO Reroute incoming traffic to port 22 of a Linux box in a Windows network

Posted on 2003-10-24
12
385 Views
Last Modified: 2010-04-13
Howto configure rerouting incoming outbound traffic to a Linux box on the LAN using port 22 of that Linux box ?
The network architecture is as follows :
   ADSL router => Windows2000 DMZ (server) => switch : LAN

Somebody needs to connect to a Linux box socket 192.168.2.125 : 22.  The router has a LAN address 192.168.1.1  The DMZ LAN interface has an IP address = 192.168.1.2   Its internal LAN interface uses 192.168.2.2
The target machine = 192.168.2.125:22
0
Comment
Question by:pascalvercammen
  • 5
  • 4
12 Comments
 
LVL 11

Expert Comment

by:ewtaylor
ID: 9615983
Just tell the router to forward any port 22 traffic to ip 192.168.2.125 what kind of router is it?
0
 

Author Comment

by:pascalvercammen
ID: 9616071
Well that is a problem because we do not have tools to configure the Cisco router, it is owned by a Belgian Telecom company and password protected.  Is there no configuration possible on the Windows 2000 server ?
0
 
LVL 11

Accepted Solution

by:
ewtaylor earned 500 total points
ID: 9616237
You are using rras on the 2k machine? If so check this link out http://www.microsoft.com/technet/treeview/default.asp?url=/technet/columns/cableguy/cg0503.asp
0
Best Practices: Disaster Recovery Testing

Besides backup, any IT division should have a disaster recovery plan. You will find a few tips below relating to the development of such a plan and to what issues one should pay special attention in the course of backup planning.

 

Author Comment

by:pascalvercammen
ID: 9616559
Great article but how can I test the rerouting to be sure that traffic arrives at port 22 ?
0
 
LVL 11

Expert Comment

by:ewtaylor
ID: 9616695
Try telnetting from outside the router.
0
 

Author Comment

by:pascalvercammen
ID: 9616739
Telnet uses port 23 and this is not open at the Router.  How can I simply test the NAT/port mapping :
80.201.246.213:8080 is mapped internally to 192.168.2.125:22 on the public interface (192.168.1.2)
Note that the network architecture is as follows :
The router has a LAN address 192.168.1.1  The DMZ public interface has an IP address = 192.168.1.2   Its internal LAN interface uses 192.168.2.2
0
 
LVL 3

Expert Comment

by:lst-yves
ID: 9616916
You can specify a port after the telnet command, ie :

If you wanted to test that a web browser service is up :

At a command promt (start, run, type : CMD, ENTER) :

telnet 80.201.246.213 8080

So if your port 8080 is forwarded properly, it should answer. Note that is you have fix-up protocol enable on your cisco, it might show up weird things, or *** ***, thats normal.
0
 
LVL 11

Expert Comment

by:ewtaylor
ID: 9616919
telnet can use whatever port you specify it to use
in this case you could telnet 80.201.246.213 22 would telnet to port 22 of this ip address Is this person going to access the linux box from inside the lan or from outside?
0
 

Author Comment

by:pascalvercammen
ID: 9617328
From outside the LAN, (WAN)
0
 

Author Comment

by:pascalvercammen
ID: 9809287
I would like to ACCEPT but I get always the same message "you cannot accept" when I hit the ACCEPT button
0

Featured Post

Comprehensive Backup Solutions for Microsoft

Acronis protects the complete Microsoft technology stack: Windows Server, Windows PC, laptop and Surface data; Microsoft business applications; Microsoft Hyper-V; Azure VMs; Microsoft Windows Server 2016; Microsoft Exchange 2016 and SQL Server 2016.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

Suggested Solutions

Title # Comments Views Activity
SQL SERVER 2000 mdf file defragmentation 4 56
Update a root certificate 8 676
Locking down a taskpad 1 169
Retrieve process time in memory in VB 6 128
NTFS file system has been developed by Microsoft that is widely used by Windows NT operating system and its advanced versions. It is the mostly used over FAT file system as it provides superior features like reliability, security, storage, efficienc…
The advancement in technology has been a great source of betterment and empowerment for the human race, Nevertheless, this is not to say that technology doesn’t have any problems. We are bombarded with constant distractions, whether as an overload o…
This video shows how to use Hyena, from SystemTools Software, to bulk import 100 user accounts from an external text file. View in 1080p for best video quality.
The Email Laundry PDF encryption service allows companies to send confidential encrypted  emails to anybody. The PDF document can also contain attachments that are embedded in the encrypted PDF. The password is randomly generated by The Email Laundr…

808 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question