Log settings for displaying only connections to router

An area specifically for port forwarding, firewalls and other (on-line) security related issues.
Post Reply
phoenix_me
Novice
Novice
Posts: 28
Joined: Thu Jun 18, 2009 3:53 pm

Log settings for displaying only connections to router

Post by phoenix_me » Wed May 05, 2010 1:46 pm

I did a port forwarding on my router 'Router:443 to NAS:23'. On NAS:23 I have a sshd up and running. It was a working solution for long time. Unfortunately it stops working few days ago. I don't know what's the reason.

I am able to login via ssh inside my network to NAS:22 so it means that the problem is in router configuration.
I have dynamic IP, but I checked twice and DDNS is updating my IP correctly.

I have my NAS configured to receive a logs from router. But I don't know hot to setup router to send to logs only information about connections to router. Hopefully it let me find out why router is rejecting connections on port 443

In Remote Log there are settings for: Default Log Level, Logic, Entity, Module, User. What options should I use to see in logs only information about connections to router and disable all others information?

UPDATE:
My iptables shows:
iptables -nvL -t nat
Chain PREROUTING (policy ACCEPT 5511 packets, 374K bytes)
pkts bytes target prot opt in out source destination
1 60 DNAT tcp -- ppp0 * 0.0.0.0/0 0.0.0.0/0 tcp dpt:443 to:10.10.1.10:22
but it's not working.

I enabled a localnat to be able to test it from LAN. And here are the results:
Ping is working both IP and hostname

hostname

Code: Select all

ping myhost.no-ip.info
PING myhost.no-ip.info (79.191.223.214) 56(84) bytes of data.
64 bytes from myhost.no-ip.info (79.191.223.214): icmp_seq=1 ttl=255 time=0.739 ms
64 bytes from myhost.no-ip.info (79.191.223.214): icmp_seq=2 ttl=255 time=0.805 ms
64 bytes from myhost.no-ip.info (79.191.223.214): icmp_seq=3 ttl=255 time=0.796 ms
IP

Code: Select all

ping 79.191.223.214
PING 79.191.223.214 (79.191.223.214) 56(84) bytes of data.
64 bytes from 79.191.223.214: icmp_seq=1 ttl=255 time=0.792 ms
64 bytes from 79.191.223.214: icmp_seq=2 ttl=255 time=0.776 ms
64 bytes from 79.191.223.214: icmp_seq=3 ttl=255 time=0.781 ms
ssh is working only IP, not working hostname

IP

Code: Select all

ssh -p 443 -l admin 79.191.223.214
admin@79.191.223.214's password:
hostname

Code: Select all

ssh -p 443 -l admin myhost.no-ip.info
_
Post Reply