Trying to ssh and manage with web

HL521 · March 22, 2016, 12:03am

Greetings, all!

I have recently setup a ddns server so I can manage my network whilst away from home.

Getting the DDNS server up and running was easy, and I opened ports 80 and 22 to 0.0.0.0/0, assuming that is for WAN access? I thought it was for LAN at first and set it to my LAN’s address range. Hasn’t changed access at all, however.

Asked a friend to attempt to ping both my domain name, and my IP. He successfully pinged both, and to verify tracerouted back to my IP.

When he tried to ssh or open in his browser both of those addresses, however, they failed out. What am I doing wrong?

dns-enabled: yes

     update-time: yes

  public-address: MYIP

        dns-name: MYDOMAIN

          status: updated

Flags: X - disabled, I - invalid
 #   NAME                                         PORT ADDRESS                                                                            CERTIFICATE
 0   telnet                                         23
 1   ftp                                            21
 2   www                                            80 0.0.0.0/0
 3   ssh                                            22 0.0.0.0/0
 4 XI www-ssl                                       443 0.0.0.0/0                                                                          none
 5   api                                          8728
 6   winbox                                       8291
 7   api-ssl                                      8729                                                                                    none

“MYIP” and “MYDOMAIN” obviously substituted for actual domain and IP.

pukkita · March 22, 2016, 9:06am

Do you have IP > firewall > Filter rules active? Post them if so…

I’d change ssh port to a >1024 random one, internet is full of script kiddies running ssh scanners on tcp 22.

A better approach, would be setting up VPN access to the router and accessing it from the VPN.