Topic: Remote Access from WAN

[ronaldson40]

bpivk you were right.....

I can remote SSH and get my html page in Primary>html ibay....
when i enter http://wanip:11280/

I am using port 11280 for the port 80 forward.

However I tried http://wanip:11280/server-manager/
and even http://wanip:11280/server-manager/

I could not open the server-manager

[ronaldson40]

Hi I tried using pptpd, set max connections to 10.
Set up a vpn connection in Windows xp
Whenever I connect I am gettting this error

Code: [Select]

Error:691 - Username/PAssword invalid

Here is the log of the SME

Code: [Select]


Jul  6 17:22:21 datahub pptpd[21598]: GRE: read(fd=6,buffer=804ebe0,len=8196) from PTY failed: status = -1 error = Input/output error, usually caused by unexpected termination of pppd, check option syntax and pppd logs
Jul  6 17:22:21 datahub pptpd[21598]: CTRL: PTY read or GRE write failed (pty,gre)=(6,7)
Jul  6 17:22:21 datahub pptpd[21598]: CTRL: Reaping child PPP[21599]
Jul  6 17:22:21 datahub pptpd[21598]: CTRL: Client 86.96.88.60 control connection finished
Jul  6 17:22:40 datahub pptpd[21632]: CTRL: Client 86.96.88.60 control connection started
Jul  6 17:22:40 datahub pptpd[21632]: CTRL: Starting call (launching pppd, opening GRE)
Jul  6 17:22:40 datahub pppd[21633]: Plugin radius.so loaded.
Jul  6 17:22:40 datahub pppd[21633]: RADIUS plugin initialized.
Jul  6 17:22:40 datahub pppd[21633]: pppd 2.4.4 started by root, uid 0
Jul  6 17:22:40 datahub kernel: divert: not allocating divert_blk for non-ethernet device ppp0
Jul  6 17:22:40 datahub pppd[21633]: Using interface ppp0
Jul  6 17:22:40 datahub pppd[21633]: Connect: ppp0 <--> /dev/pts/1
Jul  6 17:22:40 datahub pptpd[21632]: CTRL: Ignored a SET LINK INFO packet with real ACCMs!
Jul  6 17:22:50 datahub pppd[21633]: Peer root failed CHAP authentication
Jul  6 17:22:51 datahub pppd[21633]: Connection terminated.
Jul  6 17:22:51 datahub kernel: divert: no divert_blk to free, ppp0 not ethernet
Jul  6 17:22:51 datahub pppd[21633]: Exit


[Stefano]

bpivk you were right.....

I can remote SSH and get my html page in Primary>html ibay....
when i enter http://wanip:11280/

I am using port 11280 for the port 80 forward.

However I tried http://wanip:11280/server-manager/
and even http://wanip:11280/server-manager/

I could not open the server-manager

server-manager is not available from outside lan

you can always do a vpn or a ssh tunnel

HTH

Ciao

Stefano

[bpivk]

Did you forward/open port 443 on your router? Can you try a different port (eg.112443) Does shields up show the port as open?

[ronaldson40]

YES port 12443 is open
This is what shields up reports
Initially I tried this
http://WANIP:12443
http://WANIP:12443/server-manager

Got Blank pages in IE in both cases
Then I tried this
https://WANIP:12443/server-manager
I get an accept  certificate. I click yes.
I get the following in IE

Code: [Select]



 You are not authorized to view this page
You might not have permission to view this directory or page using the credentials you supplied.

--------------------------------------------------------------------------------

If you believe you should be able to view this directory or page, please try to contact the Web site by using any e-mail address or phone number that may be listed on the WANIP:12443 home page.

You can click  Search to look for information on the Internet.




HTTP Error 403 - Forbidden
Internet Explorer  




Do I have to add something under Remote Access>Remote Management to get access?

[bpivk]

Do I have to add something under Remote Access>Remote Management to get access?

Run ipconfig on your computer (start/run/cmd and type ipconfig/all) and then enter your ip in remote management.

Or use any ip (1.1.1.1) and enter a 0.0.0.0 subnet but remember to delete this if you'll use this.

Then check if it works.

[ronaldson40]

ipconfig will just give me my LAN ip...
But when I remotely connect to the SME isn't it the Wan Ip that is taken into account....

Now my WANIP is dynamic... so i am using dynamic dns...

So what should I enter under remote management... the LAN ip of the remote computer or the WAN IP of the remote computer...

[bpivk]

ipconfig will just give me my LAN ip...

Yes that's why i said that you should enter ipconfig/all

Run ipconfig on your computer (start/run/cmd and type ipconfig/all)

You should enter wan ip.

[ronaldson40]

I get this from my friend's system

Code: [Select]


C:\Documents and Settings\Koshy>ipconfig /all

Windows IP Configuration

        Host Name . . . . . . . . . . . . : COMP
        Primary Dns Suffix  . . . . . . . :
        Node Type . . . . . . . . . . . . : Mixed
        IP Routing Enabled. . . . . . . . : No
        WINS Proxy Enabled. . . . . . . . : No

Ethernet adapter Wireless Network Connection:

        Connection-specific DNS Suffix  . :
        Description . . . . . . . . . . . : Intel(R) PRO/Wireless 2200BG Network
 Connection
        Physical Address. . . . . . . . . : 00-11-13-2B-33-1A
        Dhcp Enabled. . . . . . . . . . . : No
        IP Address. . . . . . . . . . . . : 192.168.1.101
        Subnet Mask . . . . . . . . . . . : 255.255.255.0
        Default Gateway . . . . . . . . . : 192.168.1.1
        DNS Servers . . . . . . . . . . . : 192.168.1.1

[ronaldson40]

I will try this site for the WAN IP...
www.whatismyipaddress.com

I will enter it in the Remote Management but what about the subnet...should I leave that empty...?

[bpivk]

Sorry i forgot that you're using a router.  
www.ipchicken.com will tell you your ip.

[ronaldson40]

I am still getting the same...
You are not authorised to view this page...

I put  my WAN IP and
255.255.255.0 as the subnet

[mmccarn]

If you want to run server-manager from off-site, do this:

• download putty.exe from http://www.chiark.greenend.org.uk/~sgtatham/putty/download.html and save it in your windows directory (c:\windows)
• click 'start', 'run' and type in putty -L 443:127.0.0.1:443 WANIP
  
• browse to https://localhost/server-manager

Notes:
I personally save 'putty.exe' in my windows folder so that I can use 'start', 'run' as shown above to let me save my various putty command lines easily.  There are other ways to do this.

The "-L" must be an upper case L.  The specific command shown says "take any traffic received by my windows computer at port 443, and send it to "localhost" at the remote computer, port 443".

If your USR router is still configured as the end-point for remote ssh traffic, you would need to do this:

• click 'start', 'run' and type in putty -L 443:192.168.1.2:443 WANIP
  
• browse to https://localhost/server-manager

Notes:
- I assume you've already downloaded putty.
- Your USR modem is now forwarding traffic received by your remote workstation on port 443 to the host it sees at 192.168.1.2, port 443

If you happen to be running a web server on your windows workstation you may already be using port 443, in which case the commands above will fail. Do this:

• click 'start', 'run' and type in putty -L 2443:192.168.1.2:443 WANIP
  
• browse to https://localhost:2443/server-manager

[Brave Dave]

Once you have VPN'ed in

You access the internal IP of the Server - not the external - you are part of the internal network

1. Establish VPN
2. goto https://internalip/server-manager

[ronaldson40]

David

VPN is not working for me....
From my neighbour's house, I tried from his system which is a Windows XP client.

On router, port forward ports 1723 and 47 to 192.168.1.2 (SME)
On SME, I got to remote access, change PPTP clients from 0 to 10.
Click save.

On the XP client, (different Internet line), I got to Network Connections, Create new connections, Connect to Network at my Workplace, Create VPN, enter the IP address and a connection is created.
I enter username as admin and then my password, Under settings select all the three options and then click connect. It connects and says verifying username and password, and then it disconnects giving me Error 691: Invalid Username, Password.....

My SME is 7.1.3