Can't ssh into linux box via PUBLIC_URL

leder11011 · 11 May 2024 13:07

when I disable my local firewall my public IP shows “Host is up”:

    ~/IdeaProjects/GlDisplayManager    main  nmap -p 22 --open 79.192.11.83                                                                                                                         ✔   
Starting Nmap 7.94 ( https://nmap.org ) at 2024-05-11 15:02 CEST
Nmap scan report for p4fc00b53.dip0.t-ipconnect.de (79.192.11.83)
Host is up (0.010s latency).

PORT   STATE SERVICE
22/tcp open  ssh

Nmap done: 1 IP address (1 host up) scanned in 0.09 seconds

though the “Host seems down” with fw enabled.
But I have a rule for incoming IPv4 SSH traffic that should allow it:

22/tcp ERLAUBEN EIN Überall

anon33601770 · 11 May 2024 13:23

Dann mußt Du Dir vielleicht mal alle Regeln ansehen - womöglich wird sie ja von einer späteren oder höher priorisierten überschrieben/“überstimmt”?
Eigentlich kann das nach meinem Verständnis nur so sein, denn ohne FW geht es, aber mit angeblich geöffneter FW nicht.

leder11011 · 11 May 2024 13:23

I know the mistake now: When I ssh into my dynamicDNS “MyFritz” it works! When I ssh into my hosted URL that forwards to dynamicDNS “MyFritz” then port 22 is blocked. Anybody an idea why the port is blocked?

anon33601770 · 11 May 2024 13:28

URL implies a web server, no? - port 80 and/or 443

I have not experimented any more on my end since last time - can’t help.

leder11011 · 11 May 2024 13:36

it is certainly possible that the hosted URL listens on port 80 and 443 only…

xabbu · 11 May 2024 13:45

Are you sure you mean URL and not domain?

A URL is something like this

mailto:manjaro@example.org

or

https://manjaro.org

a domain is something like manjaro.org and is not bound to any service or protocol. A domain can not be forwarded, however there is something like a CNAME record which can reference a different domain or subdomain.

leder11011 · 11 May 2024 15:36

yes, I have a custom domain. It is called “redirection”. The domain blocks ssh whereas the dynamicDNS from the FritzBox does not.

leder11011 · 11 May 2024 15:45

and I established a port forward instead of DMZ now. And I changed the ssh port to a higher number. Thanks all for your support!

system · 13 May 2024 03:45

This topic was automatically closed 36 hours after the last reply. New replies are no longer allowed.