I'd like to ask for tips. I have a Pi running a number of services.
One is SSH to allow Telnet access via Putty. I use certificates
for authentication. While at home on LAN I can Putty into the Pi just
fine using IP 192.168.0.181:22
I have dynamic DNS for external access so I can use address
<me>.ddns.net:22 then port forwarding on my router to the Pi. Now this
works with other services like web server. So I know DDNS and port forwarding works.
What could be blocking SSH? Anyway to check logs on Pi?
I'd like to ask for tips. I have a Pi running a number of services. One
is SSH to allow Telnet access via Putty. I use certificates for authentication. While at home on LAN I can Putty into the Pi just fine
using IP 192.168.0.181:22
I have dynamic DNS for external access so I can use address
<me>.ddns.net:22 then port forwarding on my router to the Pi. Now this
works with other services like web server. So I know DDNS and port
forwarding works.
What could be blocking SSH? Anyway to check logs on Pi?
Hello Geeknix!
Saturday April 22 2023 23:00, you wrote to All:
I'd like to ask for tips. I have a Pi running a number of services.
One is SSH to allow Telnet access via Putty. I use certificates
for authentication. While at home on LAN I can Putty into the Pi just
fine using IP 192.168.0.181:22
I have dynamic DNS for external access so I can use address <me>.ddns.net:22 then port forwarding on my router to the Pi. Now this works with other services like web server. So I know DDNS and port forwarding works.
Silly questions, but have you opened SSH (instead of telnet - very low security) and have you set up secure key authority etc.
Small point - on mine systems I have extra security set to verify all MAC addresses as well as user / passwords and they are only allowed using defined ip addresses in a specific network and no I have no need to get through from outside but do have a box set up as a concentrator if needs must with security
set to above B1.
Geeknix <usenet@apple.geeknix135.net> wrote:
I'd like to ask for tips. I have a Pi running a number of services. One
is SSH to allow Telnet access via Putty. I use certificates for
authentication. While at home on LAN I can Putty into the Pi just fine
using IP 192.168.0.181:22
I have dynamic DNS for external access so I can use address
<me>.ddns.net:22 then port forwarding on my router to the Pi. Now this
works with other services like web server. So I know DDNS and port
forwarding works.
What could be blocking SSH? Anyway to check logs on Pi?
Do you have any firewalling on the Pi, router or ISP that might interfere? Try a different external port other than 22?
On the client, Putty has a logging window that tells you what happened on
its side of the connection.
On ther server, /var/log/auth.log often tells you if there was a problem
with keys or similar.
I'd like to ask for tips. I have a Pi running a number of services. One
is SSH to allow Telnet access via Putty. I use certificates for authentication. While at home on LAN I can Putty into the Pi just fine
using IP 192.168.0.181:22
I have dynamic DNS for external access so I can use address
<me>.ddns.net:22 then port forwarding on my router to the Pi. Now this
works with other services like web server. So I know DDNS and port
forwarding works.
What could be blocking SSH? Anyway to check logs on Pi?
Thanks!
On 2023-04-22, Vincent Coen <nospam.Vincent.Coen@f1.n250.z2.fidonet.org> wrote:
Hello Geeknix!
Saturday April 22 2023 23:00, you wrote to All:
I'd like to ask for tips. I have a Pi running a number of services.
One is SSH to allow Telnet access via Putty. I use certificates for
authentication. While at home on LAN I can Putty into the Pi just
fine using IP 192.168.0.181:22
I have dynamic DNS for external access so I can use address
<me>.ddns.net:22 then port forwarding on my router to the Pi. Now
this works with other services like web server. So I know DDNS and
port forwarding works.
Silly questions, but have you opened SSH (instead of telnet - very low
security) and have you set up secure key authority etc.
Not sure what you mean, when I open the port on the router I have
selected All (i.e. TCP and UDP) for port 22.
Small point - on mine systems I have extra security set to verify all
MAC addresses as well as user / passwords and they are only allowed
using defined ip addresses in a specific network and no I have no need
to get through from outside but do have a box set up as a concentrator
if needs must with security set to above B1.
I have disabled username/password and only accept pre-shared keys.
Thanks Vincent.
Try a different external port other than 22?
On 2023-04-23, Theo <theom+news@chiark.greenend.org.uk> wrote:
Try a different external port other than 22?
I have tried port 4444 for external access, that still forwards to port
22 on the Pi.
On 2023-04-23, Theo <theom+news@chiark.greenend.org.uk> wrote:
Geeknix <usenet@apple.geeknix135.net> wrote:
I'd like to ask for tips. I have a Pi running a number of services.
One is SSH to allow Telnet access via Putty. I use certificates for
authentication. While at home on LAN I can Putty into the Pi just fine
using IP 192.168.0.181:22
I have dynamic DNS for external access so I can use address
<me>.ddns.net:22 then port forwarding on my router to the Pi. Now this
works with other services like web server. So I know DDNS and port
forwarding works.
What could be blocking SSH? Anyway to check logs on Pi?
Do you have any firewalling on the Pi, router or ISP that might
interfere?
Try a different external port other than 22?
Thanks for your reply. I haven't knowingly setup a firewall on the Pi
perhaps the router has one but the same steps I use to allow HTTP and Minecraft have opened those ports for use.
On the client, Putty has a logging window that tells you what happened
on its side of the connection.
Great, I'll try and figure out how to see that window.
On ther server, /var/log/auth.log often tells you if there was a
problem with keys or similar.
I'll check that out also. Thank you.
On 2023-04-22, Vincent Coen
<nospam.Vincent.Coen@f1.n250.z2.fidonet.org> wrote:
Hello Geeknix!
Saturday April 22 2023 23:00, you wrote to All:
I'd like to ask for tips. I have a Pi running a number ofservices.
One is SSH to allow Telnet access via Putty. I use certificatesjust
for authentication. While at home on LAN I can Putty into the Pi
fine using IP 192.168.0.181:22this
I have dynamic DNS for external access so I can use address
<me>.ddns.net:22 then port forwarding on my router to the Pi. Now
works with other services like web server. So I know DDNS and port
forwarding works.
Silly questions, but have you opened SSH (instead of telnet - very
low security) and have you set up secure key authority etc.
Not sure what you mean, when I open the port on the router I have
selected All (i.e. TCP and UDP) for port 22.
Small point - on mine systems I have extra security set to verify
all MAC addresses as well as user / passwords and they are only
allowed using defined ip addresses in a specific network and no I
have no need to get through from outside but do have a box set up as
a concentrator if needs must with security set to above B1.
I have disabled username/password and only accept pre-shared keys.
Geeknix <usenet@apple.geeknix135.net> wrote:
I'd like to ask for tips. I have a Pi running a number of services. One
is SSH to allow Telnet access via Putty. I use certificates for authentication. While at home on LAN I can Putty into the Pi just fine using IP 192.168.0.181:22
I have dynamic DNS for external access so I can use address <me>.ddns.net:22 then port forwarding on my router to the Pi. Now this works with other services like web server. So I know DDNS and port forwarding works.
What could be blocking SSH? Anyway to check logs on Pi?
Do you have any firewalling on the Pi, router or ISP that might interfere? Try a different external port other than 22?
Theo <theom+news@chiark.greenend.org.uk> wrote:
Geeknix <usenet@apple.geeknix135.net> wrote:Yes, on many routers you not only have to configure the port
I'd like to ask for tips. I have a Pi running a number of services. One
is SSH to allow Telnet access via Putty. I use certificates for
authentication. While at home on LAN I can Putty into the Pi just fine
using IP 192.168.0.181:22
I have dynamic DNS for external access so I can use address
<me>.ddns.net:22 then port forwarding on my router to the Pi. Now this
works with other services like web server. So I know DDNS and port
forwarding works.
What could be blocking SSH? Anyway to check logs on Pi?
Do you have any firewalling on the Pi, router or ISP that might interfere? >> Try a different external port other than 22?
forwarding you also hove to open up the relevant ports on the
firewall.
I'd like to ask for tips. I have a Pi running a number of services. One
is SSH to allow Telnet access via Putty. I use certificates for authentication. While at home on LAN I can Putty into the Pi just fine
using IP 192.168.0.181:22
On 2023-04-22, Vincent Coen <nospam.Vincent.Coen@f1.n250.z2.fidonet.org> wrote:
Hello Geeknix!
Saturday April 22 2023 23:00, you wrote to All:
I'd like to ask for tips. I have a Pi running a number of services.
One is SSH to allow Telnet access via Putty. I use certificates
for authentication. While at home on LAN I can Putty into the Pi just
fine using IP 192.168.0.181:22
I have dynamic DNS for external access so I can use address
<me>.ddns.net:22 then port forwarding on my router to the Pi. Now this
works with other services like web server. So I know DDNS and port
forwarding works.
Silly questions, but have you opened SSH (instead of telnet - very low
security) and have you set up secure key authority etc.
Not sure what you mean, when I open the port on the router I have
selected All (i.e. TCP and UDP) for port 22.
Small point - on mine systems I have extra security set to verify all MAC
addresses as well as user / passwords and they are only allowed using defined
ip addresses in a specific network and no I have no need to get through from >> outside but do have a box set up as a concentrator if needs must with security
set to above B1.
I have disabled username/password and only accept pre-shared keys.
Thanks Vincent.
On 23/04/2023 07:00, Geeknix wrote:
I'd like to ask for tips. I have a Pi running a number of services. One
is SSH to allow Telnet access via Putty. I use certificates for
authentication. While at home on LAN I can Putty into the Pi just fine
using IP 192.168.0.181:22
Thanks for all the replies, I'm away from home until Wednesday (SG
time), I'll try the suggestions then and let you all know the outcome!
I'd like to ask for tips. I have a Pi running a number of services. One
is SSH to allow Telnet access via Putty. I use certificates for authentication. While at home on LAN I can Putty into the Pi just fine
using IP 192.168.0.181:22
I have dynamic DNS for external access so I can use address
<me>.ddns.net:22 then port forwarding on my router to the Pi. Now this
works with other services like web server. So I know DDNS and port
forwarding works.
What could be blocking SSH? Anyway to check logs on Pi?
Anyway, is really great I can now access my Pi with SSH. Thanks again!
Sysop: | Coz |
---|---|
Location: | Anoka, MN |
Users: | 2 |
Nodes: | 4 (0 / 4) |
Uptime: | 139:57:50 |
Calls: | 166 |
Files: | 5,389 |
Messages: | 223,236 |