Hub 1 Port forwarding curiosity
- Subscribe to RSS Feed
- Mark Topic as New
- Mark Topic as Read
- Float this Topic for Current User
- Bookmark
- Subscribe
- Printer Friendly Page
- Plusnet Community
- :
- Forum
- :
- Help with my Plusnet services
- :
- My Router
- :
- Hub 1 Port forwarding curiosity
Hub 1 Port forwarding curiosity
08-06-2024 7:44 PM - edited 08-06-2024 7:45 PM
- Mark as New
- Bookmark
- Subscribe
- Subscribe to RSS Feed
- Highlight
- Report to Moderator
Yesterday morning the PSU fan on my web and mail server started making a dreadful noise - time to dismantle it and see whether it could be cleaned and lubricated or needs replacement, so I launched my backup VM and updated its keys and contents to match.
After tweaking /etc/hosts to test this was working as desired it was time to change the port forwarding in the router to send mail, http, and https packets to the desktop machine so the server could be taken out and serviced. It didn't work, and I have spent two days trying to sort out the iptables forwarding in the desktop before finally looking at the log of incoming packets. They were addressed to IP address 192.168.1.120, which is not the address of any machine on my LAN!
In Home Network, the name and IP address of my desktop were shown correctly, and in Port Forwarding the correct machine name was shown, but packets were being addressed incorrectly, and hence being dropped on receipt. I took out the machine name and entered the IP address literally, and finally everything worked.
Well, at least I've learnt a lesson - never assume the machine names in Port Forwarding and their IP addresses match the ones shown in Home Network. They can be different so shouldn't be relied on. Use the numerical IP instead.
Re: Hub 1 Port forwarding curiosity
08-06-2024 8:34 PM
- Mark as New
- Bookmark
- Subscribe
- Subscribe to RSS Feed
- Highlight
- Report to Moderator
Out of interest, what model of router?
Re: Hub 1 Port forwarding curiosity
08-06-2024 9:02 PM
- Mark as New
- Bookmark
- Subscribe
- Subscribe to RSS Feed
- Highlight
- Report to Moderator
Thread title - Hub 1 Port forwarding curiosity 😉
Zen SOGEA 40/10 + Digital Voice FRITZ!Box 7530
BT technician (Retired)
Re: Hub 1 Port forwarding curiosity
09-06-2024 8:47 AM
- Mark as New
- Bookmark
- Subscribe
- Subscribe to RSS Feed
- Highlight
- Report to Moderator
It didn't work, and I have spent two days trying to sort out the iptables forwarding in the desktop before finally looking at the log of incoming packets. They were addressed to IP address 192.168.1.120, which is not the address of any machine on my LAN!
Most routers use a linux kernel and the actual port forwarding is done by the addition of a DNAT rule to the iptables (or nftables ) firewall. Its a one-off operation, in that the rule is added when the port forward is created. The rule specifies an IP address to which packets are to be forwarded. If when you create the rule, you use the name or mac of the device, the port forward will establish the current IP address for that device and use that to create the DNAT rule. Should the IP address of the device change in future, the network display on the Hub may show the updated information but the port forward rule will have the old IP.
Superusers are not staff, but they do have a direct line of communication into the business in order to raise issues, concerns and feedback from the community.
Re: Hub 1 Port forwarding curiosity
09-06-2024 9:40 AM
- Mark as New
- Bookmark
- Subscribe
- Subscribe to RSS Feed
- Highlight
- Report to Moderator
Might well be true, but it doesn't explain my experience.
1. My desktop machine has a static LAN IP which has never been 192.168.1.120.
2. The rule will be added and removed every time I change the destination between the two machines. It's about a year since I last had to route the incoming packets to my desktop. I only have to do this if I have to service the "server" machine which normally receives the packets, so this happened when I changed the rule the day before yesterday. The router has always known the correct IP address to go with the machine name and was still showing that in Home Network, but not using that when I switched over to it in Firewall settings.
Re: Hub 1 Port forwarding curiosity
09-06-2024 10:06 AM
- Mark as New
- Bookmark
- Subscribe
- Subscribe to RSS Feed
- Highlight
- Report to Moderator
Re: Hub 1 Port forwarding curiosity
09-06-2024 12:40 PM - edited 09-06-2024 12:43 PM
- Mark as New
- Bookmark
- Subscribe
- Subscribe to RSS Feed
- Highlight
- Report to Moderator
Anything is possible, but there has never been such a device on my LAN. I suspect some sort of memory corruption could be responsible, though I'll never know.
All I do know is the machine name used in Home Network had a different IP address from the same machine name in Firewall->Port Forwarding and the IP address in the latter was one never used for any connected device.
The lesson remains - use the IP address for forwarding and don't rely on machine names.
Re: Hub 1 Port forwarding curiosity
09-06-2024 9:53 PM
- Mark as New
- Bookmark
- Subscribe
- Subscribe to RSS Feed
- Highlight
- Report to Moderator
I can report that I have now found my reading glasses.
- Subscribe to RSS Feed
- Mark Topic as New
- Mark Topic as Read
- Float this Topic for Current User
- Bookmark
- Subscribe
- Printer Friendly Page
- Plusnet Community
- :
- Forum
- :
- Help with my Plusnet services
- :
- My Router
- :
- Hub 1 Port forwarding curiosity