Am 07. Dec, 2020 schwätzte Gary Dale so:
moin moin,
First off, try one or more -v to your ssh command to get more verbosity.
The -v will show you the step in building the connection that failed.
Also, try -G to see what configuration will be used without actually
opening a connection.
I'm running Debian/Buster on various servers, including my home server. I'm
trying to set up an ssh tunnel that I can use post-pandemic in case I need to
access my home network remotely. I'm already doing this to various remote
servers so I thought this should just work, since I can already access my
home server locally using its 192.168... address (actually through the
/etc/hosts file using the server's name).
You can access it locally, so the ssh daemon is listening to the external
IP on your system rather than just localhost and basic authentication is
working.
Do you have a firewall on the ssh server? If so, does it allow ssh
connections from your internal router?
I've set up port forwarding on both my routers (I have an inner network and
an outer one, using the outer network for devices I don't really control). I
can access my Apache2 server on the inner network by forwarding port 80 on
the outer network to the WAN address of the inner router and forwarding that
to my server. Pointing my browser to the external IP address of the outer
router brings up the default page - which I can change so I know it's the
actual local page.
However, when I try to ssh to the same address, it just times out.
Internet <--> Outer Router <--> Inner Router <--> ssh/apache server
That's what you have?
You have port forwarding from 80 and 22 on the Outer Router going to the
Inner Router and from the Inner Router to your server?
Can you see the connection transverse your routers?
Also, if you have a reliable shell at a provider that allows incoming SSH
connections and SSH tunnels, you could setup an autossh connection to that
that builds a reverse tunnel to your internal server without needing to
open any firewall ports.
ciao,
der.hans
I've compared the sshd.conf file on my local server to one on a remote server
and they are identical. The only uncommented lines are:
PasswordAuthentication no
ChallengeResponseAuthentication no
UsePAM yes
X11Forwarding yes
PrintMotd no
AcceptEnv LANG LC_*
Subsystem sftp /usr/lib/openssh/sftp-server
Any ideas on what's going wrong?
--
# https://www.LuftHans.com https://www.PhxLinux.org
# <arclight> Delicious red tape, like a Twizzler but flat. And adhesive.
