Tek-Tips is the largest IT community on the Internet today!

Members share and learn making Tek-Tips Forums the best source of peer-reviewed technical information on the Internet!

Register Log in
  • Congratulations strongm on being selected by the Tek-Tips community for having the most helpful posts in the forums last week. Way to Go!

VPN OK - but SSH can't leave remote network

Status
Not open for further replies.
steveroot

steveroot

IS-IT--Management
Dec 29, 2000
20
GB
Hello all, many months of googling and reading and I still can't figure this. Can anyone help please?

Situation: - I need to SSH into my webserver. My webserver firewall will only allow connections from my office static IP. Therefore I need to VPN from home/anywhere into my office and then out to the web server.

EG:

Laptop at home > [VPN over internet] > Office > [Back through same Internet connection] > Webserver.

Things I know:
I can SSH into office servers OK
I can visit web pages on my web server and the IP address reported is that of my Office static IP addres (so I know all traffic is going though the office network)
I *cannot* SSH into the web server - it just times out.

Can anyone suggest anything to point me in the right direction please?
Many Thanks,
Steve

--
Steve Root
 
Sort by date Sort by votes
Instead of ssh directly from your labtop via vpn connection, can you first ssh/telnt into your office server, and then from your office server, you can then ssh into your web server.
Of course, if your office server is not Unin/Linux machine, this can be a problem, since it's probably not straight foward to do remote login.

Hope this help.
 
Upvote 0 Downvote
Thanks for that suggestion. I hadn't even thought of that! Good news: I can now SSH to my server :)

I'm still wondering though why I can't use the SSH through the VPN and out like other services (like HTTP which I know works through the VPN).

Thanks again,
Steve

--
Steve Root
 
Upvote 0 Downvote
HTTP does not encypt anything whereas SSH encyptes the data then you try to encrypt it a second time by the VPN. Some encyptionb protocols will not tolerate any changing of the packet along the data path since a change of packet is an alteration which is exactly what the encryption is to prevent. I've simplified things ALOT with answer but this is probably what is happening.

MikeS

Find me at
"Take advantage of the enemy's unreadiness, make your way by unexpected routes, and attack unguarded spots."
Sun Tzu
 
Upvote 0 Downvote
Status
Not open for further replies.

Similar threads

teknance
  • Locked
  • Question
Discovering Portugal: Uncover Hidden Destinations and VPN Solutions
Replies
5
Views
445
GlobeTrekkerGal
GlobeTrekkerGal
sarahz2
  • Locked
  • Question
Best vpn safe and fast
Replies
4
Views
333
GlobeTrekkerGal
GlobeTrekkerGal
MP2023
  • Locked
  • Question
How to Create an site to site VPN
Replies
1
Views
274
sircles
sircles
ramblingrebel
  • Locked
  • Question
Built-in Windows 10 VPN
Replies
1
Views
238
Joon Smith
Joon Smith
LearningNetworking
  • Locked
  • Question
Linking Hosts on the same subnet via VPN
Replies
0
Views
314
LearningNetworking
LearningNetworking

Part and Inventory Search

Sponsor

Back
Top