Hi Everyone,

I can use VNC and PuTTY inside my local net on their respective ports of 5900 and 22. But I can't get them to work over the internet either with their standard ports, or with forwarded ports.

Over the internet I have been able to use 80, 8080, 8088, and 8090 to access MythWeb, stream recordings without audio to WMP, and stream recordings with flash. I tried my router's port forwarding to use these same apparently open ports to forward VNC and PuTTY to the Mythbox, but over the internet the clients always say "failed to connect to server" and "connection timeout."

I have tried searching through this forum and knoppmythwiki, but I haven't found anything relating to solving this problem.

Can anyone recommend a resource to get this working?

_________________
Trying to install KnoppMyth R5F27, ECS 671T-M, Celeron 430, 1gig RAM, 320gig SATA Seagate, Samsung SATA SH-S203N DVD drive, Onboard video and audio, DVICO Fusion HDTV 5 Lite, Seasonic S12II-330watt PS

When you say "I tried my router's port forwarding to use these same apparently open ports", are you referring to the 80xx ports, or 5900 and 22? If the 80xx ports, did you reconfigure sshd and your putty client to use that port instead?

If you meant port 22 (in the case of SSH), does your ISP block any inbound TCP ports? I have heard some ISPs block a number of the well-known ports (below 1025), you may need to run SSH on a different port.

HI,

Just a suggestion but may want to check some of the forum posts about protecting your box if you do get port 22 & 5900 open. There are script kiddies out there that will be hammering on you trying get access. KM was built for enjoyment by you, not the whole internet.

Mike

I tried the following internal > external port mappings
22 > 22 and 80 and 8080 and 8088 and 8090
5900 > 5900 and 80 and 8080 and 8088 and 8090

Each time I changed the external port, I specified the new port in the client
TightVNC - ExternalAddress::PortNumber
PuTTY - there is a separate box for port number and I changed it from 22
That is the only change I made configuring these programs

Both internally and externally while using VNC I was not using any SSH tunnelling.

22 and 5900 may have inbound blocks, but since 80 and 8080 and 8088 and 8090 all worked with Mythweb, I figured they didn't have inbound blocks. Maybe I don't fully understand how ports and mapping work. If there is a better way to verify this, please let me know.

Thanks mjl for the reminder. Since I don't mind if a script kiddie trashes KM yet, and getting security up just adds a layer of complexity, I was trying to just get things working, before I try to secure it. But I will definitely lock KM down as I figure things out and KM becomes more valuable to my viewing habits.

_________________
Trying to install KnoppMyth R5F27, ECS 671T-M, Celeron 430, 1gig RAM, 320gig SATA Seagate, Samsung SATA SH-S203N DVD drive, Onboard video and audio, DVICO Fusion HDTV 5 Lite, Seasonic S12II-330watt PS

What port do you have SSHd running on? If port 22 is being blocked by your ISP and you don't change the port SSHd is running on, you will never connect. I find it easier to work it backwards (service port -> router/firewall rules -> client). You can use telnet as a test, as in This should connect if there is a service listening on <port #>, and show you If you get that you should be pretty much set.

I suspect you really need some more knowledge of networking in general to help you through this - I have found that http://www.practicallynetworked.com/ is usually a good place to point people of varying skillsets. Searching there for ssh and port forwarding should yield all sorts of info (you might throw in the make/model of your router as well). The reason you don't find much on that stuff here is due to the fact that it isn't really a KM/Myth/Linux issue...

Sounds like your router isn't redirecting the ports properly or you've entered them in the wrong way round!

Normally you specify it as external --> internal. So you would redirect port 8080 --> 22

@mad_paddler
I have a D-Link DI-624. I have port forwarding in it down, because I have had no problem changing the ports successfully for MythWeb, MythStream, and MythFlash.

@slowtolearn
I didn't change the service port of 22 for SSHd. I thought it would be transparent to the daemon as long as the router was handling port forwarding. I will look into this.

I used practicallynetworked years ago to get a basic understanding of this stuff. I didn't think to go back there and look for app specific info, thanks. If you know of any more appropriate forums for this besides the one at practicallynetworked, I would be glad to hear them.

I am probably more knowledgeable than 99% of windows users in networking. But Linux is a new ballgame, and the average knowledge of Linux users on all computer info is much higher. I am sure I am below average here.

_________________
Trying to install KnoppMyth R5F27, ECS 671T-M, Celeron 430, 1gig RAM, 320gig SATA Seagate, Samsung SATA SH-S203N DVD drive, Onboard video and audio, DVICO Fusion HDTV 5 Lite, Seasonic S12II-330watt PS