Daylene Posted July 6, 2006 Share Posted July 6, 2006 Hi everyone, I frequently need to SSH into my home computer (Runs debian linux) from outside the network, so that I can back up data to the home computer as I go. The problem is, how can I get to my router's configuration page from outside the network (ex. 192.168.x.x)? Sometimes I need to change some settings so that I can access my PC from outside the network. (The router blocks all SSH requests unless I port forward them, and sometimes I need to edit the settings) The router is an SMC Wireless router with 4 ethernet ports. Thanks! Link to comment Share on other sites More sharing options...
+BudMan MVC Posted July 6, 2006 MVC Share Posted July 6, 2006 (edited) huh? Once you have 1 ssh connection into your network, you can tunnel any other ports you need through that ssh connection.. SSH can be seen as a poor mans vpn ;) Once you have your ssh connection, you can access anything else on the network you need from that connection. here this might help http://www.ssh.com/support/documentation/o...Forwarding.html http://www.securityfocus.com/infocus/1816 http://www.bitvise.com/port-forwarding.html Also once you have access to one machine using vnc or rdp through your ssh tunnel, you could always open up the routers interface and make any changes you want.. Keep in mind, that quite a few routers will disconnect all sessions on changes to port forwards, etc. If you just need access to files that are on your other machines, just mount them to the machine running ssh. be it NFS or CIFS.. any drive on your network can just be mounted to your linux box.. so you will access to all files in your network, etc. Edited July 6, 2006 by BudMan Link to comment Share on other sites More sharing options...
Daylene Posted July 6, 2006 Author Share Posted July 6, 2006 Well, I can ping my IP address fine (The address of the router) Problem is, I have 2 machines behind the router, so I do I tell SSH to connect to my machine? I know that my machine behind the network is 192.168.x.xxx and my router has the ip 70.xx.xxx.xxx Trying to connect via puTTY. gives me connection refused. Link to comment Share on other sites More sharing options...
tomasarson Posted July 6, 2006 Share Posted July 6, 2006 (edited) maybe your router has an option like mine? linksys has an option for remote administration. if i turn it on then i can choose a port and log right into my router anywhere i'm on the internet. Edited July 6, 2006 by tomasarson Link to comment Share on other sites More sharing options...
+BudMan MVC Posted July 6, 2006 MVC Share Posted July 6, 2006 So do you have a forward on your router now? To the machine running ssh?? If you do not have remote admin on your router turned on, there is NO way for you do such a thing remotely ;) Would kind of be a HUGE GAPPING security flaw now wouldn't it ;) Do you currently have any forwards setup on the router? be it VNC, RDP, SSH, what? Do you not know how to forward ssh to your linux box? http://www.portforward.com/ No you can not ACCESS your 192.168.x.x address from the internet.. these are private addresses.. All you need is to open up ssh on your router to your linux box, from there you can access any other machine on your network, remote control one of them to gain access to your routers web interface from its private address. Link to comment Share on other sites More sharing options...
tomasarson Posted July 6, 2006 Share Posted July 6, 2006 So do you have a forward on your router now? To the machine running ssh?? If you do not have remote admin on your router turned on, there is NO way for you do such a thing remotely ;) Would kind of be a HUGE GAPPING security flaw now wouldn't it ;) Do you currently have any forwards setup on the router? be it VNC, RDP, SSH, what? Do you not know how to forward ssh to your linux box? http://www.portforward.com/ No you can not ACCESS your 192.168.x.x address from the internet.. these are private addresses.. All you need is to open up ssh on your router to your linux box, from there you can access any other machine on your network, remote control one of them to gain access to your routers web interface from its private address. yeah thats how i have it set up. remote in, and control EVERYTHING from there. just like being at home. Link to comment Share on other sites More sharing options...
Daylene Posted July 6, 2006 Author Share Posted July 6, 2006 I'll check for the remote administration option when I get home. Thanks guys! Link to comment Share on other sites More sharing options...
+BudMan MVC Posted July 6, 2006 MVC Share Posted July 6, 2006 I would NOT suggest you turn on remote admin of your router.. Once you have a ssh connection, you can access anything you need on your private network through this connection.. there is NO need for any other forwards.. And if need be.. you can always just access your routers interface from the private side, through your ssh connection.. Turning on remote admin allows anyone on the outside that can guess your password to admin your router - does that sound like a smart thing? SSH can be set to require a digital cert to access it, that you carry on your thumb drive along with your copy of putty ;) What sounds more secure to you? ;) http://www.ssh.com/support/documentation/o...tication-2.html http://sial.org/howto/openssh/publickey-auth/ Link to comment Share on other sites More sharing options...
Recommended Posts