I have one last part of my NeoRoute install for which I need help. This is for a Tomato router server install using a Mac client locally.
But first, I like to share the truly stupid things I've done to this point and solved in the hopes of helping someone else.
Stupid Thing #1 - Tomato Router SSH Login
It took me a bit to figure out how to ssh into my Tomato router. I found the setting to allow ssh within the lan at Tomato UI / Admin / Admin Access but kept trying to login with user 'admin'. Admin is used for the web interface. You have to login at root.
ssh root@192.168.1.1
Stupid Thing #2 - Running NeoRouter Conifguration Explorer in Virtual Machine
Since I couldn't ssh into my Tomato router I launched a virtual machine and ran the NeoRouter Configuration Explorer from there. This worked great in Parallels just remember to uninstall or shut it down or you have two servers running on your lan. After I discovered how to ssh into the router I no longer needed it. The CLI is very straightforward.
Stupid Thing #3 - Old Port Forwards
I previously had Hamachi installed and port forwarded to my main machine on port 32976. I saw it when I ran iptables -L in the router ssh session. Just a tip to double-check for old port forwards that may conflict with your new config.
My Issue Now:
I can connect to the internal IP (192.168.1.1) using the Mac client and a user I setup. I know nrserver is running, recognizes my users and authentication. I'm guessing this has something to do with the router config. I am not running an Apple firewall. I thought the Hamachi port forward was it but I still cannot connect to the Domain I established on the dashboard or via my external IP. Inbound connection logging is disabled.
I'll copy my router ifconfig and iptables below. I'd appreciate any advice.
Thanks.
Code:
# ifconfig
br0 Link encap:Ethernet HWaddr xx:xx:xx:xx:xx:xx
inet addr:192.168.1.1 Bcast:192.168.1.255 Mask:255.255.255.0
UP BROADCAST RUNNING MULTICAST MTU:1500 Metric:1
RX packets:24372 errors:0 dropped:0 overruns:0 frame:0
TX packets:19502 errors:0 dropped:0 overruns:0 carrier:0
collisions:0 txqueuelen:0
RX bytes:2655616 (2.5 MiB) TX bytes:5958068 (5.6 MiB)
eth0 Link encap:Ethernet HWaddr xx:xx:xx:xx:xx:xx
UP BROADCAST RUNNING MULTICAST MTU:1500 Metric:1
RX packets:90313 errors:0 dropped:0 overruns:0 frame:0
TX packets:25493 errors:0 dropped:0 overruns:0 carrier:0
collisions:0 txqueuelen:100
RX bytes:9460252 (9.0 MiB) TX bytes:6888843 (6.5 MiB)
Interrupt:4 Base address:0x1000
eth1 Link encap:Ethernet HWaddr xx:xx:xx:xx:xx:xx
UP BROADCAST RUNNING MULTICAST MTU:1500 Metric:1
RX packets:0 errors:0 dropped:0 overruns:0 frame:34625
TX packets:1035 errors:11 dropped:0 overruns:0 carrier:0
collisions:0 txqueuelen:100
RX bytes:0 (0.0 B) TX bytes:360321 (351.8 KiB)
Interrupt:2 Base address:0x5000
lo Link encap:Local Loopback
inet addr:127.0.0.1 Mask:255.0.0.0
UP LOOPBACK RUNNING MULTICAST MTU:16436 Metric:1
RX packets:706 errors:0 dropped:0 overruns:0 frame:0
TX packets:706 errors:0 dropped:0 overruns:0 carrier:0
collisions:0 txqueuelen:0
RX bytes:50983 (49.7 KiB) TX bytes:50983 (49.7 KiB)
vlan0 Link encap:Ethernet HWaddr xx:xx:xx:xx:xx:xx
UP BROADCAST RUNNING MULTICAST MTU:1500 Metric:1
RX packets:24383 errors:0 dropped:0 overruns:0 frame:0
TX packets:19502 errors:0 dropped:0 overruns:0 carrier:0
collisions:0 txqueuelen:0
RX bytes:2753720 (2.6 MiB) TX bytes:6036076 (5.7 MiB)
vlan1 Link encap:Ethernet HWaddr xx:xx:xx:xx:xx:xx
inet addr:##.###.##.# Bcast:##.###.##.# Mask:255.255.255.128
UP BROADCAST RUNNING MULTICAST MTU:1500 Metric:1
RX packets:65926 errors:0 dropped:0 overruns:0 frame:0
TX packets:5991 errors:0 dropped:0 overruns:0 carrier:0
collisions:0 txqueuelen:0
RX bytes:5080698 (4.8 MiB) TX bytes:852767 (832.7 KiB)
# iptables -L
Chain INPUT (policy DROP)
target prot opt source destination
DROP 0 -- anywhere <redacted>
DROP 0 -- anywhere anywhere state INVALID
ACCEPT 0 -- anywhere anywhere state RELATED,ESTABLISHED
ACCEPT 0 -- anywhere anywhere
ACCEPT 0 -- anywhere anywhere
ACCEPT tcp -- anywhere anywhere tcp dpt:32976
Chain FORWARD (policy DROP)
target prot opt source destination
ACCEPT 0 -- anywhere anywhere
DROP 0 -- anywhere anywhere state INVALID
TCPMSS tcp -- anywhere anywhere tcp flags:SYN,RST/SYN tcpmss match 1461:65535 TCPMSS set 1460
ACCEPT 0 -- anywhere anywhere state RELATED,ESTABLISHED
wanin 0 -- anywhere anywhere
wanout 0 -- anywhere anywhere
ACCEPT 0 -- anywhere anywhere
upnp 0 -- anywhere anywhere
ACCEPT 0 -- anywhere 192.168.1.100
Chain OUTPUT (policy ACCEPT)
target prot opt source destination
Chain upnp (1 references)
target prot opt source destination
Chain wanin (1 references)
target prot opt source destination
ACCEPT tcp -- anywhere 192.168.1.100 tcp dpt:5900
ACCEPT tcp -- anywhere 192.168.1.100 tcp dpt:3283
ACCEPT udp -- anywhere 192.168.1.100 udp dpt:3283
ACCEPT tcp -- anywhere 192.168.1.100 tcp dpt:5988
ACCEPT tcp -- anywhere 192.168.1.100 tcp dpt:5900
ACCEPT tcp -- anywhere 192.168.1.100 tcp dpt:12975
ACCEPT tcp -- anywhere 192.168.1.100 tcp dpt:ssh
ACCEPT udp -- anywhere 192.168.1.100 udp dpt:ssh
ACCEPT tcp -- anywhere 192.168.1.100 tcp dpt:ssh
ACCEPT udp -- anywhere 192.168.1.100 udp dpt:ssh
Chain wanout (1 references)
target prot opt source destination
#