LinuxQuestions.org
Visit Jeremy's Blog.
Go Back   LinuxQuestions.org > Forums > Linux Forums > Linux - Newbie
User Name
Password
Linux - Newbie This Linux forum is for members that are new to Linux.
Just starting out and have a question? If it is not in the man pages or the how-to's this is the place!

Notices


Reply
  Search this Thread
Old 07-19-2002, 01:50 PM   #1
J_Szucs
Senior Member
 
Registered: Nov 2001
Location: Budapest, Hungary
Distribution: SuSE 6.4-11.3, Dsl linux, FreeBSD 4.3-6.2, Mandrake 8.2, Redhat, UHU, Debian Etch
Posts: 1,126

Rep: Reputation: 58
Remote login to an intranet server behind firewall?


I would like to remotely login to a server on the intranet of our company for some system maintenance work during the holidays: our mailboxes should be cleaned otherwise the mail partition will be possibly filled up with spam.
I do not know how to connect to that server and all the information I have is as follows:

- the route I have to pass through is possibly as follows:
internet -- our ISP -- firewall on our intranet -- intranet server

- our intranet is a private network, not having a real IP address, only a dynamic one

- our servers are always on

- I know the administrator of our ISP can remotely login to any of our servers, therefore I suppose that SSH may be listening on one of the ports on the firewall of our intranet (maybe port 22?)

- some users can reach their mailboxes located on our intranet server from the internet

- I know the root password on the server to which I would like to connect on the intranet

- I also know my username and password, besides my RSA authentication key is in the authorized_keys file in my home directory of that server. I also know the cipher type to use.

- ping 'servername.some.where' gives me an unknown host error - ping 'www.some.where' gives me a result, but that's only our web page located at our ISP

So, is there a possibility to login to our intranet server passing through our ISP and our intranet firewall based on the above information?

Last edited by J_Szucs; 07-19-2002 at 01:54 PM.
 
Old 07-19-2002, 02:08 PM   #2
Mara
Moderator
 
Registered: Feb 2002
Location: Grenoble
Distribution: Debian
Posts: 9,696

Rep: Reputation: 232Reputation: 232Reputation: 232
The essential information is if you can ping your firewall. If you can, you can also login into your server using ssh (as your firewall seems to be allowing/passing ssh connection).
There can be 2 hard points.
One: your ISP is not passing ssh requests to your firewall.
Two: your firewall is a hardware one, not allowing to log into it (and make another ssh connection to one of your servers) and your firewall is not configured to forward ssh connections into one of your servers OR your firewall has a local IP.
 
Old 07-19-2002, 03:33 PM   #3
J_Szucs
Senior Member
 
Registered: Nov 2001
Location: Budapest, Hungary
Distribution: SuSE 6.4-11.3, Dsl linux, FreeBSD 4.3-6.2, Mandrake 8.2, Redhat, UHU, Debian Etch
Posts: 1,126

Original Poster
Rep: Reputation: 58
I do not know how to ping our firewall.
As I mentioned before I pinged www.some.where and servername.some.where with different results, but I suppose these pings did not get through our ISP.
Previously I found an IP address using netstat on that server - I thought it was our actual IP address. Now I do not think so: looking up that IP address gave mail.some.where (which is possibly at our ISP). I also tried tracing www.some.where which gave me the same IP address. (It may mean something or nothing - I do not know).
I am convinced that it is possible to get through our firewall, since our ISP does it often. I am not sure, however, if our ISP passes through SSH requests to our firewall. I could find it out if I knew how to ping our firewall.
So, how to do that?
 
Old 07-20-2002, 11:49 AM   #4
Mara
Moderator
 
Registered: Feb 2002
Location: Grenoble
Distribution: Debian
Posts: 9,696

Rep: Reputation: 232Reputation: 232Reputation: 232
Try to ping your firewall. Or better: run traceroute to any host in the Internet (may be linuxquestions.org). You'll get a list of host your packets are passing by. The first one should be your firewall. Look as many local IPs there are.
It may be that your firewall has local IPs, the same with most of your ISP's network. In such case, they can use ssh connection to your server and it's hard to do it from outside.
 
  


Reply


Thread Tools Search this Thread
Search this Thread:

Advanced Search

Posting Rules
You may not post new threads
You may not post replies
You may not post attachments
You may not edit your posts

BB code is On
Smilies are On
[IMG] code is Off
HTML code is Off



Similar Threads
Thread Thread Starter Forum Replies Last Post
Remote Exchange server + Intranet MailMan pudhiyavan Linux - Networking 0 08-24-2005 09:24 PM
Distro recommendations for Dedicated Router + Firewall + Print Server + Intranet Web Netfreak Linux - Newbie 1 11-18-2004 11:02 AM
can not remote to server (neither intranet or internet) aardvark667 Linux - Newbie 3 04-12-2004 05:13 PM
can not remote to server (neither intranet or internet) aardvark667 Linux - Newbie 2 04-12-2004 01:13 PM
can not remote to server (neither intranet or internet) aardvark667 Linux - Newbie 1 04-12-2004 12:17 PM

LinuxQuestions.org > Forums > Linux Forums > Linux - Newbie

All times are GMT -5. The time now is 02:31 AM.

Main Menu
Advertisement
My LQ
Write for LQ
LinuxQuestions.org is looking for people interested in writing Editorials, Articles, Reviews, and more. If you'd like to contribute content, let us know.
Main Menu
Syndicate
RSS1  Latest Threads
RSS1  LQ News
Twitter: @linuxquestions
Open Source Consulting | Domain Registration