Jump to content

Unable to SSH to WAN port in Arming Mode


mpmackenna
 Share

Recommended Posts

I powered up my Packet Squirrel and connected to the LAN port. I verified that I could log in and changed the root password. I then connected the WAN port to my network and verified that the Packet Squirrel obtained an IP address from DHCP and I am able to ping that address. However, port 22 is not responding when I tried to ssh to the WAN port from another machine. I ran nmap and it says port 22 is closed. I am guessing this is an iptables issue of some sort since everything works fine when conneccting to the LAN port. Any ideas on how I can further troubleshoot the issue. I looked at iptables chains listed on the Packet Squirrel and I am having a hard time making sense of them. I am not even sure if that is the issue. I did upgrade the firmware to version 1.2 and that didn't seem to help. I've considered running the factory reset tool but that seems like overkill since I can connect to the device over the LAN port.

Link to comment
Share on other sites

23 minutes ago, Dave-ee Jones said:

Could he just create another payload then start the SSH server after the PS has it's IP?

E.g.


NETMODE NAT
sleep 3
/etc/init.d/sshd start &

That obviously wouldn't be run in Arming mode, but it would still work when using a payload instead, right?

NETMODE NAT doesn't allow SSHing in via WAN side :)

Link to comment
Share on other sites

1 hour ago, Sebkinne said:

NETMODE NAT doesn't allow SSHing in via WAN side :)

Okie. It's just that it seems like a logical thing to do seeing as other PCs on the network might need to connect to the PS's web server, SSH server or something like that.

Unless it's only affecting SSH? I can't see how, but could be possible.

My payload that I'm working on (equivalent of WabbitWeb but for the PS, but upgraded :wink:) makes use of other computers being able to see the PS's web server.

Link to comment
Share on other sites

2 minutes ago, Dave-ee Jones said:

Okie. It's just that it seems like a logical thing to do seeing as other PCs on the network might need to connect to the PS's web server, SSH server or something like that.

Unless it's only affecting SSH? I can't see how, but could be possible.

My payload that I'm working on (equivalent of WabbitWeb but for the PS, but upgraded :wink:) makes use of other computers being able to see the PS's web server.

It's not just affecting SSH. All incoming (non established) traffic to the WAN port will be dropped. This is obviously not the case for the LAN port.

Edit: If you want to manage your PS from a computer on the WAN, either change the firewall rules, or use a reverse ssh session.

Link to comment
Share on other sites

6 minutes ago, Sebkinne said:

It's not just affecting SSH. All incoming (non established) traffic to the WAN port will be dropped. This is obviously not the case for the LAN port.

Edit: If you want to manage your PS from a computer on the WAN, either change the firewall rules, or use a reverse ssh session.

So PCs on the local network can still see it, it's just external connections that cannot.

Makes sense though, wouldn't want random peeps on the internet messing around with my payloads and doing something like

rm -r \

...

Link to comment
Share on other sites

Join the conversation

You can post now and register later. If you have an account, sign in now to post with your account.

Guest
Reply to this topic...

×   Pasted as rich text.   Paste as plain text instead

  Only 75 emoji are allowed.

×   Your link has been automatically embedded.   Display as a link instead

×   Your previous content has been restored.   Clear editor

×   You cannot paste images directly. Upload or insert images from URL.

 Share

  • Recently Browsing   0 members

    • No registered users viewing this page.
×
×
  • Create New...