Telnet through Linksys WRT54G to home lab

georgemcgeorgemc Member Posts: 429
in Off-Topic
I'm trying to allow port 23 on my Linksys router so that from the Internet
I can access my home lab.

I've set up port range forwarding for the local IP address with port 23 in the Linksys
and can also see the remote host trying to connect in the logs. I'm using DynDNS to track the IP on the Linksys, although is hasn't changed in months.

Problem is, the remote host cannot connect. If I telnet locally to the
external IP from a host on the LAN I can get in. Is there a trick or a setting that I am somehow missing?

Thanks,

George
WGU BS: Business - Information Technology Management
Start Date: 01 October 2012
QFT1,PFIT in progress.
TRANSFERRED/COMPLETED: AGC1,BBC1,LAE1,QBT1,LUT1,QLC1,QMC1,QLT1,IWC1,INC1,INT1,BVC1,CLC1,MGC1, CWV1 BNC1, LIT1,LWC1,QAT1,WFV1,EST1,EGC1,EGT1,IWT1,MKC1,MKT1,RWT1,FNT1,FNC1, BDC1,TPV1 REQUIRED:
· Share on FacebookShare on Twitter

Comments

  • bighornsheepbighornsheep Member Posts: 1,506
    Is the interface of the Cisco router running telnet in the same subnet as WRT54G?

    Have you checked TCP/UDP setting? Do the other port forwards work? Have you tried flashing your WRT54g?
    Jack of all trades, master of none
    · Share on FacebookShare on Twitter
  • thesemantheseman Member Posts: 230
    Sounds like a firewall issue. Traffic from the LAN will have different rules than that from the WAN. I would check the firewall settings.

    Travis
    · Share on FacebookShare on Twitter
  • ilcram19ilcram19 Inactive Imported Users Posts: 206
    is da on da machine cuz if it is make sure the telnet service is running, and if it is on a router make sure u set up all the vty password and settins
    If you stop getting better, you cease being good
    · Share on FacebookShare on Twitter
  • georgemcgeorgemc Member Posts: 429
    bighornsheep wrote:
    Is the interface of the Cisco router running telnet in the same subnet as WRT54G?

    Have you checked TCP/UDP setting? Do the other port forwards work? Have you tried flashing your WRT54g?

    1. Yes. I can ping from the Cisco router to the Linksys and from any PC on the LAN to the Cisco router.

    2. The Cisco is currently wide open for testing. When I've set up bit torrent in the past using port forwarding it worked fine. The LInksys (wrt54g v.3) is running dd-WRT v. 23 standard.

    I've also disabled external (from the Internet) telnet to the linksys command line. I figured this would interfere with the forward of telnet to a machine on the LAN side.

    Thanks,

    George
    WGU BS: Business - Information Technology Management
    Start Date: 01 October 2012
    QFT1,PFIT in progress.
    TRANSFERRED/COMPLETED: AGC1,BBC1,LAE1,QBT1,LUT1,QLC1,QMC1,QLT1,IWC1,INC1,INT1,BVC1,CLC1,MGC1, CWV1 BNC1, LIT1,LWC1,QAT1,WFV1,EST1,EGC1,EGT1,IWT1,MKC1,MKT1,RWT1,FNT1,FNC1, BDC1,TPV1 REQUIRED:
    · Share on FacebookShare on Twitter
  • georgemcgeorgemc Member Posts: 429
    theseman wrote:
    Sounds like a firewall issue. Traffic from the LAN will have different rules than that from the WAN. I would check the firewall settings.

    Travis


    I checked the firewall setting on the Linksys. It was basically an enable or disable switch. I disabled it completely to run a test and had the same results. Unable to connect.
    WGU BS: Business - Information Technology Management
    Start Date: 01 October 2012
    QFT1,PFIT in progress.
    TRANSFERRED/COMPLETED: AGC1,BBC1,LAE1,QBT1,LUT1,QLC1,QMC1,QLT1,IWC1,INC1,INT1,BVC1,CLC1,MGC1, CWV1 BNC1, LIT1,LWC1,QAT1,WFV1,EST1,EGC1,EGT1,IWT1,MKC1,MKT1,RWT1,FNT1,FNC1, BDC1,TPV1 REQUIRED:
    · Share on FacebookShare on Twitter
  • georgemcgeorgemc Member Posts: 429
    ilcram19 wrote:
    is da on da machine cuz if it is make sure the telnet service is running, and if it is on a router make sure u set up all the vty password and settins

    The VTY password and or settings are correct on the Cisco. I can telnet to it from any PC on my home network.
    WGU BS: Business - Information Technology Management
    Start Date: 01 October 2012
    QFT1,PFIT in progress.
    TRANSFERRED/COMPLETED: AGC1,BBC1,LAE1,QBT1,LUT1,QLC1,QMC1,QLT1,IWC1,INC1,INT1,BVC1,CLC1,MGC1, CWV1 BNC1, LIT1,LWC1,QAT1,WFV1,EST1,EGC1,EGT1,IWT1,MKC1,MKT1,RWT1,FNT1,FNC1, BDC1,TPV1 REQUIRED:
    · Share on FacebookShare on Twitter
  • Silver BulletSilver Bullet Member Posts: 676 ■■■□□□□□□□
    What is the default route of the router that you are wanting to connect to. Is there one set?
    Since the linksys is the internet facing router then your default route will need to be routed to the linksys.

    Otherwise it will only be aware of LAN addresses right?
    · Share on FacebookShare on Twitter
  • georgemcgeorgemc Member Posts: 429
    Silver Bullet wrote:
    What is the default route of the router that you are wanting to connect to. Is there one set?
    Since the linksys is the internet facing router then your default route will need to be routed to the linksys.

    Otherwise it will only be aware of LAN addresses right?

    The router I'm attempting to connect to is a Cisco 2511. I'm not using it for routing. I have an ip default-gateway setup pointing to the Linksys (192.168.1.1), and from the 2511 I can ping other routers on the LAN. I haven't tried a ping to the outside port of the Linksys. I'll verify that i can ping from the 2511 to the outside of the linksys when I get home. I have no reason to believe it wont work.

    Although now that I'm thinking about it. I believe the Linksys will be forwarding from the 192.168.1.1 address, which should work even without a gateway/default route being set. I'll have to set up a sniffer and verify that also.
    WGU BS: Business - Information Technology Management
    Start Date: 01 October 2012
    QFT1,PFIT in progress.
    TRANSFERRED/COMPLETED: AGC1,BBC1,LAE1,QBT1,LUT1,QLC1,QMC1,QLT1,IWC1,INC1,INT1,BVC1,CLC1,MGC1, CWV1 BNC1, LIT1,LWC1,QAT1,WFV1,EST1,EGC1,EGT1,IWT1,MKC1,MKT1,RWT1,FNT1,FNC1, BDC1,TPV1 REQUIRED:
    · Share on FacebookShare on Twitter
  • dtlokeedtlokee Member Posts: 2,378 ■■■■□□□□□□
    georgemc wrote:
    Silver Bullet wrote:
    What is the default route of the router that you are wanting to connect to. Is there one set?
    Since the linksys is the internet facing router then your default route will need to be routed to the linksys.

    Otherwise it will only be aware of LAN addresses right?

    The router I'm attempting to connect to is a Cisco 2511. I'm not using it for routing. I have an ip default-gateway setup pointing to the Linksys (192.168.1.1), and from the 2511 I can ping other routers on the LAN. I haven't tried a ping to the outside port of the Linksys. I'll verify that i can ping from the 2511 to the outside of the linksys when I get home. I have no reason to believe it wont work.

    Although now that I'm thinking about it. I believe the Linksys will be forwarding from the 192.168.1.1 address, which should work even without a gateway/default route being set. I'll have to set up a sniffer and verify that also.

    You still need a default route from the 2511 to the linksys because the destination address will be translated by NAT but the source address will not be. You can use the "ip default-gateway" command only if you also disabled ip routing with the "no ip routing" command. If that's notthe case you can use the "ip route 0.0.0.0 0.0.0.0 192.168.1.1" command to enter one.
    The only easy day was yesterday!
    · Share on FacebookShare on Twitter
  • Silver BulletSilver Bullet Member Posts: 676 ■■■□□□□□□□
    I think you are correct. Port forwarding should show that it originates from 192.168.1.1.

    It is possible that the packets are being forwarded to the router now. But if the router doesn't have a default route that tells it to send everything destined to another network than 192.168.1.0/24 to 192.168.1.1, then you are only having a one way conversation.

    I may be totally way off base here. It wouldn't be the first.
    · Share on FacebookShare on Twitter
  • georgemcgeorgemc Member Posts: 429
    dtlokee wrote:

    You still need a default route from the 2511 to the linksys because the destination address will be translated by NAT but the source address will not be. You can use the "ip default-gateway" command only if you also disabled ip routing with the "no ip routing" command. If that's notthe case you can use the "ip route 0.0.0.0 0.0.0.0 192.168.1.1" command to enter one.

    Hmm. I can't remember if I disabled IP routing or not. But this sure sounds like the answer to me. I'll double check when I get home.

    It's kinda scary that I've been doing this long enough to remember when you used to have to enable "ip routing" in order to route anything.
    WGU BS: Business - Information Technology Management
    Start Date: 01 October 2012
    QFT1,PFIT in progress.
    TRANSFERRED/COMPLETED: AGC1,BBC1,LAE1,QBT1,LUT1,QLC1,QMC1,QLT1,IWC1,INC1,INT1,BVC1,CLC1,MGC1, CWV1 BNC1, LIT1,LWC1,QAT1,WFV1,EST1,EGC1,EGT1,IWT1,MKC1,MKT1,RWT1,FNT1,FNC1, BDC1,TPV1 REQUIRED:
    · Share on FacebookShare on Twitter
  • georgemcgeorgemc Member Posts: 429
    Thanks guys, problem is resolved. I just needed to set a default route on the 2511. I wasn't aware that the Linksys didn't translate the source address. And I'll never make THAT mistake again.

    Thanks again,

    George
    WGU BS: Business - Information Technology Management
    Start Date: 01 October 2012
    QFT1,PFIT in progress.
    TRANSFERRED/COMPLETED: AGC1,BBC1,LAE1,QBT1,LUT1,QLC1,QMC1,QLT1,IWC1,INC1,INT1,BVC1,CLC1,MGC1, CWV1 BNC1, LIT1,LWC1,QAT1,WFV1,EST1,EGC1,EGT1,IWT1,MKC1,MKT1,RWT1,FNT1,FNC1, BDC1,TPV1 REQUIRED:
    · Share on FacebookShare on Twitter
Sign In or Register to comment.