* Fwd: SSHD not connecting from outside(real) IP
[not found] <568AA766.7010101@gmail.com>
@ 2016-01-04 20:05 ` João Paulo
2016-01-04 21:43 ` Nem W Schlecht
` (2 more replies)
[not found] ` <568AAE97.9030005@gmail.com>
1 sibling, 3 replies; 9+ messages in thread
From: João Paulo @ 2016-01-04 20:05 UTC (permalink / raw)
To: cygwin
[-- Attachment #1: Type: text/plain, Size: 795 bytes --]
Hello all,
I have a mystery and I need help. I have openssh(Cygwin) installed and
working just fine in here.
I can connect normally from any of my machines to the server using local
IPs. Ex: ssh localhost or ssh 192.168.0.2. BUT, when using my external
IP(over internet->real IP) it times out.
I can validate that the service is up and running on
http://www.canyouseeme.org/ on the port FW I did for this service.
Port 22 is correctly FW to my SSHD server. On windows, I can only see an
entry on Security Events(attached) and nothing else after that. (Means
it is reaching my machine)
I have tried to reinstall Cygwin, change ports. sshd_config is in
default, disable firewall, AV. I ran out of ideas......
I had this working fine on previous window 7, now I am on Windows 10.
Thanks.
[-- Attachment #2: Event.txt --]
[-- Type: text/plain, Size: 2043 bytes --]
Nome do Log: Security
Fonte: Microsoft-Windows-Security-Auditing
Data: 04/01/2016 14:03:31
Identificação do Evento:4798
Categoria da Tarefa:Gerenciamento de conta de usuário
Nível: Informações
Palavras-chave:Sucesso da Auditoria
Usuário: N/D
Computador: BatComputador
Descrição:
A associação a um grupo local do usuário foi enumerada.
Entidade:
ID de Segurança: BATCOMPUTADOR\JP
Nome da Conta: JP
Domínio da Conta: BATCOMPUTADOR
ID de Logon: 0x239B0DF
Usuário:
ID de Segurança: BATCOMPUTADOR\cyg_server
Nome da Conta: cyg_server
Domínio da Conta: BATCOMPUTADOR
Informações do Processo:
ID do Processo: 0x7ac
Nome do Processo: C:\cygwin64\bin\ssh.exe
XML de Evento:
<Event xmlns="http://schemas.microsoft.com/win/2004/08/events/event">
<System>
<Provider Name="Microsoft-Windows-Security-Auditing" Guid="{54849625-5478-4994-A5BA-3E3B0328C30D}" />
<EventID>4798</EventID>
<Version>0</Version>
<Level>0</Level>
<Task>13824</Task>
<Opcode>0</Opcode>
<Keywords>0x8020000000000000</Keywords>
<TimeCreated SystemTime="2016-01-04T16:03:31.476257500Z" />
<EventRecordID>20680</EventRecordID>
<Correlation ActivityID="{366A6DA1-4679-0002-A26D-6A367946D101}" />
<Execution ProcessID="824" ThreadID="5860" />
<Channel>Security</Channel>
<Computer>BatComputador</Computer>
<Security />
</System>
<EventData>
<Data Name="TargetUserName">cyg_server</Data>
<Data Name="TargetDomainName">BATCOMPUTADOR</Data>
<Data Name="TargetSid">S-1-5-21-4249706122-4236901496-3004814693-1017</Data>
<Data Name="SubjectUserSid">S-1-5-21-4249706122-4236901496-3004814693-1000</Data>
<Data Name="SubjectUserName">JP</Data>
<Data Name="SubjectDomainName">BATCOMPUTADOR</Data>
<Data Name="SubjectLogonId">0x239b0df</Data>
<Data Name="CallerProcessId">0x7ac</Data>
<Data Name="CallerProcessName">C:\cygwin64\bin\ssh.exe</Data>
</EventData>
</Event>
[-- Attachment #3: Type: text/plain, Size: 218 bytes --]
--
Problem reports: http://cygwin.com/problems.html
FAQ: http://cygwin.com/faq/
Documentation: http://cygwin.com/docs.html
Unsubscribe info: http://cygwin.com/ml/#unsubscribe-simple
^ permalink raw reply [flat|nested] 9+ messages in thread
* Re: SSHD not connecting from outside(real) IP
2016-01-04 20:05 ` Fwd: SSHD not connecting from outside(real) IP João Paulo
@ 2016-01-04 21:43 ` Nem W Schlecht
2016-01-04 23:12 ` Fwd: " Adam Dinwoodie
2016-01-05 7:55 ` Oleg Volkov
2 siblings, 0 replies; 9+ messages in thread
From: Nem W Schlecht @ 2016-01-04 21:43 UTC (permalink / raw)
To: The Cygwin Mailing List
Do you have a firewall rule set up for SSHD? (Control Panel ->
Administrative Tools -> Windows Firewall with Advanced Security ->
Inbound Rules)
Is the Profile set to "Private" - if so, set it to "ALL" (Properties
on the rule, then "Advanced" select all at the top).
You could always *temporarily* disable the windows firewall to see if
that's the issue (make sure to turn it back on again, though!!!)
This shouldn't be a problem though, I would think, since SSHD should
just think it is talking to your router and nothing else, even though
you are remote (since you're using a port forwarding rule).
Are the "Port", "AddressFamily", and "ListenAddress" lines commented
out at the top of your /etc/sshd_config? (They should be.)
On Mon, Jan 4, 2016 at 2:05 PM, João Paulo <joaoptc@gmail.com> wrote:
> Hello all,
> I have a mystery and I need help. I have openssh(Cygwin) installed and
> working just fine in here.
> I can connect normally from any of my machines to the server using local
> IPs. Ex: ssh localhost or ssh 192.168.0.2. BUT, when using my external
> IP(over internet->real IP) it times out.
> I can validate that the service is up and running on
> http://www.canyouseeme.org/ on the port FW I did for this service.
> Port 22 is correctly FW to my SSHD server. On windows, I can only see an
> entry on Security Events(attached) and nothing else after that. (Means it is
> reaching my machine)
> I have tried to reinstall Cygwin, change ports. sshd_config is in default,
> disable firewall, AV. I ran out of ideas......
> I had this working fine on previous window 7, now I am on Windows 10.
> Thanks.
--
Nem W Schlecht
"Perl did the magic. I just waved the wand."
--
Problem reports: http://cygwin.com/problems.html
FAQ: http://cygwin.com/faq/
Documentation: http://cygwin.com/docs.html
Unsubscribe info: http://cygwin.com/ml/#unsubscribe-simple
^ permalink raw reply [flat|nested] 9+ messages in thread
* Re: Fwd: SSHD not connecting from outside(real) IP
[not found] ` <568AAE97.9030005@gmail.com>
@ 2016-01-04 22:09 ` João Paulo
2016-01-05 1:16 ` João Paulo
0 siblings, 1 reply; 9+ messages in thread
From: João Paulo @ 2016-01-04 22:09 UTC (permalink / raw)
To: cygwin
Yep, yep to all.
I have tried that all.
Also changed ports. I thought this could be a SIP block. But I can see
the service on canyouseeme on all ports I tried.
And I troubleshoot it all. Disabled the firewall rules (service
blocked), enable it again(active). And that same with Router Port FW,
cygwin service.
I am really out of ideas.
One thing I didn't mention. I have a ADSL modem: it DMZ to DDWRT. And
then I FW the port to my server. I have a lot of fail points, but I
tested them all !
Thanks.
--
Problem reports: http://cygwin.com/problems.html
FAQ: http://cygwin.com/faq/
Documentation: http://cygwin.com/docs.html
Unsubscribe info: http://cygwin.com/ml/#unsubscribe-simple
^ permalink raw reply [flat|nested] 9+ messages in thread
* Re: Fwd: SSHD not connecting from outside(real) IP
2016-01-04 20:05 ` Fwd: SSHD not connecting from outside(real) IP João Paulo
2016-01-04 21:43 ` Nem W Schlecht
@ 2016-01-04 23:12 ` Adam Dinwoodie
2016-01-06 15:38 ` Lee
2016-01-05 7:55 ` Oleg Volkov
2 siblings, 1 reply; 9+ messages in thread
From: Adam Dinwoodie @ 2016-01-04 23:12 UTC (permalink / raw)
To: cygwin
On Mon, Jan 04, 2016 at 06:05:32PM -0200, João Paulo wrote:
> Hello all,
> I have a mystery and I need help. I have openssh(Cygwin) installed
> and working just fine in here.
> I can connect normally from any of my machines to the server using
> local IPs. Ex: ssh localhost or ssh 192.168.0.2. BUT, when using my
> external IP(over internet->real IP) it times out.
> I can validate that the service is up and running on
> http://www.canyouseeme.org/ on the port FW I did for this service.
> Port 22 is correctly FW to my SSHD server. On windows, I can only
> see an entry on Security Events(attached) and nothing else after
> that. (Means it is reaching my machine)
> I have tried to reinstall Cygwin, change ports. sshd_config is in
> default, disable firewall, AV. I ran out of ideas......
> I had this working fine on previous window 7, now I am on Windows 10.
> Thanks.
To check I'm understanding you correctly: you're using Cygwin on your
Windows 10 machine to run an sshd service, you're attempting to connect
to this using SSH from another machine, this works when the other
machine is within your local network but not when the other machine is
external.
If that's the case, I think it's very unlikely that Cygwin is the
problem -- if Cygwin were the problem, I would expect connections to
fail on your local network too. To check that, can you run a packet
capture on the system running Cygwin sshd while you attempt to connect?
I expect it will show no received packets, which means the problem lies
elsewhere in your network.
For packet capture I normally use Wireshark, but alternatives are
available (doing it on your router would be ideal if it supports that).
--
Problem reports: http://cygwin.com/problems.html
FAQ: http://cygwin.com/faq/
Documentation: http://cygwin.com/docs.html
Unsubscribe info: http://cygwin.com/ml/#unsubscribe-simple
^ permalink raw reply [flat|nested] 9+ messages in thread
* Re: Fwd: SSHD not connecting from outside(real) IP
2016-01-04 22:09 ` João Paulo
@ 2016-01-05 1:16 ` João Paulo
2016-01-05 1:48 ` Jack
2016-01-05 18:24 ` João Paulo
0 siblings, 2 replies; 9+ messages in thread
From: João Paulo @ 2016-01-05 1:16 UTC (permalink / raw)
To: cygwin
Just run wireshark in here, and that is what I got:
3686 466.550797 192.168.1.2 187.114.55.X TCP 62 [TCP
Retransmission] 50346 â 22 [SYN] Seq=0 Win=65535 Len=0 MSS=1460 SACK_PERM=1
1.2 is my local server. 187.144.55.X is my real IP. The connection is
reaching my machine on port 22. Detail that I am trying to connect on
the same macine as the server (1.2) If I use ssh 192.1168.1.2 it works,
but if I use 187.144.55.x it doesnt. Any other suggestion?
Thanks.
--
Problem reports: http://cygwin.com/problems.html
FAQ: http://cygwin.com/faq/
Documentation: http://cygwin.com/docs.html
Unsubscribe info: http://cygwin.com/ml/#unsubscribe-simple
^ permalink raw reply [flat|nested] 9+ messages in thread
* Re: Fwd: SSHD not connecting from outside(real) IP
2016-01-05 1:16 ` João Paulo
@ 2016-01-05 1:48 ` Jack
2016-01-05 18:24 ` João Paulo
1 sibling, 0 replies; 9+ messages in thread
From: Jack @ 2016-01-05 1:48 UTC (permalink / raw)
To: cygwin
On 2016.01.04 20:16, João Paulo wrote:
>
> Just run wireshark in here, and that is what I got:
> 3686 466.550797 192.168.1.2 187.114.55.X TCP 62 [TCP
> Retransmission] 50346 → 22 [SYN] Seq=0 Win=65535 Len=0 MSS=1460
> SACK_PERM=1
>
> 1.2 is my local server. 187.144.55.X is my real IP. The connection is
> reaching my machine on port 22. Detail that I am trying to connect on
> the same macine as the server (1.2) If I use ssh 192.1168.1.2 it
> works, but if I use 187.144.55.x it doesnt. Any other suggestion?
> Thanks.
Have you tried connecting to the external IP from a machine that is
external to your local net? I have vague memories of strange issues if
you try to connect to your public IP from inside. However, if your
router is running DDWRT, then you should be able to get some some
better detail from the router itself about what it is doing with that
request.
Jack
--
Problem reports: http://cygwin.com/problems.html
FAQ: http://cygwin.com/faq/
Documentation: http://cygwin.com/docs.html
Unsubscribe info: http://cygwin.com/ml/#unsubscribe-simple
^ permalink raw reply [flat|nested] 9+ messages in thread
* Re: Fwd: SSHD not connecting from outside(real) IP
2016-01-04 20:05 ` Fwd: SSHD not connecting from outside(real) IP João Paulo
2016-01-04 21:43 ` Nem W Schlecht
2016-01-04 23:12 ` Fwd: " Adam Dinwoodie
@ 2016-01-05 7:55 ` Oleg Volkov
2 siblings, 0 replies; 9+ messages in thread
From: Oleg Volkov @ 2016-01-05 7:55 UTC (permalink / raw)
To: cygwin
04.01.2016 22:05, João Paulo writes:
> Hello all,
> I have a mystery and I need help. I have openssh(Cygwin) installed and
> working just fine in here.
> I can connect normally from any of my machines to the server using local
> IPs. Ex: ssh localhost or ssh 192.168.0.2. BUT, when using my external
> IP(over internet->real IP) it times out.
> I can validate that the service is up and running on
> http://www.canyouseeme.org/ on the port FW I did for this service.
> Port 22 is correctly FW to my SSHD server. On windows, I can only see an
> entry on Security Events(attached) and nothing else after that. (Means
> it is reaching my machine)
> I have tried to reinstall Cygwin, change ports. sshd_config is in
> default, disable firewall, AV. I ran out of ideas......
> I had this working fine on previous window 7, now I am on Windows 10.
> Thanks.
Try to issue the `traceroute' command to your real IP over the Internet
from a Linux computer and specify packet length 1452. If it fails, then
maybe a misconfigured router (e.g. CISCO) on the way has a lesser MTU
set and large packets sent by SSH do not get through. If your Internet
service provider indeed has this problem, then "MSS FIX 1452" command
issued on a CISCO router may fix it.
Oleg
--
Problem reports: http://cygwin.com/problems.html
FAQ: http://cygwin.com/faq/
Documentation: http://cygwin.com/docs.html
Unsubscribe info: http://cygwin.com/ml/#unsubscribe-simple
^ permalink raw reply [flat|nested] 9+ messages in thread
* Re: Fwd: SSHD not connecting from outside(real) IP
2016-01-05 1:16 ` João Paulo
2016-01-05 1:48 ` Jack
@ 2016-01-05 18:24 ` João Paulo
1 sibling, 0 replies; 9+ messages in thread
From: João Paulo @ 2016-01-05 18:24 UTC (permalink / raw)
To: cygwin
Guys,
thanks a lot for all the tips.
Ended up being a firewall issue on my modem.
I could connect from a machine on US (I am in Brazil) from work, and no
were else. I started to map the incoming ports on the router and notice
that it was actually not reaching the router. That lead me to conclude
the problem was on the modem. I call the ISP, they told me they do not
block anything (afffffffffffffffffff hate those guys so much !!!!!!!)
and if I need any assistance on that matter, I had to call the
manufacture of the modem. I tried that already, but the firmware is
modified by ISP. This is a ridiculous situation ! I end up finding a
team that has created a modified version of the modem that provides
access to the firewall interface. Just select default rule to accept and
voila ! Seems the ISP is really not blocking, but this is a hell of a
crappy FW !
Now I can connect to my server by my phone, and from the remote
locations I have access. I really can't connect on the server from any
LAN machine using my WAN IP. I could not understand why of that.
Anyhow, thanks a lot for all the tips and troubleshooting steps. That
lead me to a resolution !
Thanks !!!
--
Problem reports: http://cygwin.com/problems.html
FAQ: http://cygwin.com/faq/
Documentation: http://cygwin.com/docs.html
Unsubscribe info: http://cygwin.com/ml/#unsubscribe-simple
^ permalink raw reply [flat|nested] 9+ messages in thread
* Re: Fwd: SSHD not connecting from outside(real) IP
2016-01-04 23:12 ` Fwd: " Adam Dinwoodie
@ 2016-01-06 15:38 ` Lee
0 siblings, 0 replies; 9+ messages in thread
From: Lee @ 2016-01-06 15:38 UTC (permalink / raw)
To: cygwin
On 1/4/16, Adam Dinwoodie wrote:
> On Mon, Jan 04, 2016 at 06:05:32PM -0200, João Paulo wrote:
>> Hello all,
>> I have a mystery and I need help. I have openssh(Cygwin) installed
>> and working just fine in here.
>> I can connect normally from any of my machines to the server using
>> local IPs. Ex: ssh localhost or ssh 192.168.0.2. BUT, when using my
>> external IP(over internet->real IP) it times out.
>> I can validate that the service is up and running on
>> http://www.canyouseeme.org/ on the port FW I did for this service.
>> Port 22 is correctly FW to my SSHD server. On windows, I can only
>> see an entry on Security Events(attached) and nothing else after
>> that. (Means it is reaching my machine)
>> I have tried to reinstall Cygwin, change ports. sshd_config is in
>> default, disable firewall, AV. I ran out of ideas......
>> I had this working fine on previous window 7, now I am on Windows 10.
>> Thanks.
>
> To check I'm understanding you correctly: you're using Cygwin on your
> Windows 10 machine to run an sshd service, you're attempting to connect
> to this using SSH from another machine, this works when the other
> machine is within your local network but not when the other machine is
> external.
>
> If that's the case, I think it's very unlikely that Cygwin is the
> problem -- if Cygwin were the problem, I would expect connections to
> fail on your local network too. To check that, can you run a packet
> capture on the system running Cygwin sshd while you attempt to connect?
> I expect it will show no received packets, which means the problem lies
> elsewhere in your network.
>
> For packet capture I normally use Wireshark, but alternatives are
> available (doing it on your router would be ideal if it supports that).
Just be aware that a wireshark capture on the target machine captures
packets _before_ they're processed by the windows firewall, so if
wireshark shows the packets reaching the machine make sure to also
check the windows firewall log.
Regards,
Lee
--
Problem reports: http://cygwin.com/problems.html
FAQ: http://cygwin.com/faq/
Documentation: http://cygwin.com/docs.html
Unsubscribe info: http://cygwin.com/ml/#unsubscribe-simple
^ permalink raw reply [flat|nested] 9+ messages in thread
end of thread, other threads:[~2016-01-06 15:38 UTC | newest]
Thread overview: 9+ messages (download: mbox.gz / follow: Atom feed)
-- links below jump to the message on this page --
[not found] <568AA766.7010101@gmail.com>
2016-01-04 20:05 ` Fwd: SSHD not connecting from outside(real) IP João Paulo
2016-01-04 21:43 ` Nem W Schlecht
2016-01-04 23:12 ` Fwd: " Adam Dinwoodie
2016-01-06 15:38 ` Lee
2016-01-05 7:55 ` Oleg Volkov
[not found] ` <568AAE97.9030005@gmail.com>
2016-01-04 22:09 ` João Paulo
2016-01-05 1:16 ` João Paulo
2016-01-05 1:48 ` Jack
2016-01-05 18:24 ` João Paulo
This is a public inbox, see mirroring instructions
for how to clone and mirror all data and code used for this inbox;
as well as URLs for read-only IMAP folder(s) and NNTP newsgroup(s).