0

I have a server running ArchLinux at home called SERVER. Currently, I can gain access to this machine via SSH by issuing ssh user@SERVER from another computer that is connected on the same LAN. It also works if I replace SERVER with SERVER_LAN_IP (192.168.X.X).

I wanted this server to be publicly accessible from the internet, so I set up my router to forward the appropriate ports (external 1234 to internal 22). Now from a computer on the same LAN, issuing ssh -p 1234 user@ROUTER_WAN_IP seems to do the trick. However, as soon I leave the LAN, I can't even so much as ping the ROUTER_WAN_IP.

If it helps, I am using a cable internet connection. The router detects the modem through vlan and gets its external IP via DHCP.

Improve this question

1 Answer 1

Reset to default
1

Sometimes, it's easiest to start with the bare minimal configuration, and work your way out from there.

  • make sure you are using Port Forwarding, and not "port triggering"

  • disable "no ping from WAN" functionality, (this prevents PING to the router)

  • use a traceroute/tracert to see if a packet can successfully make it to your router

  • place your server inside the DMZ, and try this first

  • next, try without redirecting the port (just use 22)

  • if the above works, forward from 1234 to 22

  • disable unessecary firewall security features, enabling them one by one after you have success. (remember to revert to your original security settings if you have no luck)

    check your routers firewall log, and your servers logs, for reports of potential issues

Improve this answer
2
  • Thanks for the answer. However, I can't even get ping to work! Commented Jun 5, 2014 at 21:17
  • typically, if your network topology consist of 'computer -> router -> modem', then network set-up should be trivial. also, like I said, most routers will have a setting that prevents anybody from pinging the router. you can try connecting your server, temporarily, directly to the modem. then use [traceroute/tracert] (en.wikipedia.org/wiki/Traceroute) using a free service online to see if there is a valid route to your network. also, did you try anything I suggested? diagnostics is futile if your router's firewall is dropping ICMP/UDP packets... Commented Jun 7, 2014 at 2:14

You must log in to answer this question.

Start asking to get answers

Find the answer to your question by asking.

Ask question

Explore related questions

See similar questions with these tags.