Ping a Specific Port

Question

Pitto

Asked: 2011-12-31 03:10:23 +0800 CST2011-12-31 03:10:23 +0800 CST 2011-12-31 03:10:23 +0800 CST

Allow my OpenVPN server to work behind a Cisco 800 Router

772

I have an OpenVPN Ubuntu Server working on ip 192.168.1.11

I need to let my roadwarriors use it from anywhere. I have a Cisco 800 router but I'm not an expert... I've downloaded using tftp its running config

copy running-config tftp

and I'm editing it with notepad++

I think that I should add:

ip nat inside source static tcp 192.168.1.11 1194 mypublicip 1194 extendable

is this all? Then I should just restore this modified config and I'm done? Should I also add a permissive rule on the firewall config (always cisco 800)?

Cisco manuals suggest me to delete all rows in my config contaning "AAA" I just have: no aaa new-model should I keep it? I'm reading that those "aaa" commands could lock me out of the router :/

Thanks.

1 Answers

Voted

petrus · Answer 1 · 2011-12-31T04:28:46+08:00

Best Answer

petrus

2011-12-31T04:28:46+08:002011-12-31T04:28:46+08:00

no aaa new-model is fine if you don't have any dialin or vpn configured on this router.

Regarding your NAT/PAT issue, your statement should be OK if you are indeed using openvpn over TCP.

The other solution would be to set up a static nat redirection for all ports (what consumer routers call 'DMZ'):

Router(config)#ip nat inside source static 192.168.1.11 <publicIp>

2

Allow my OpenVPN server to work behind a Cisco 800 Router

Ping a Specific Port

Check if port is open or closed on a Linux server?

How to automate SSH login with password?

How do I tell Git for Windows where to find my private RSA key?

What's the default superuser username/password for postgres after a new install?

What port does SFTP use?

Resolve host name from IP address

Command line to list users in a Windows Active Directory group?

What is a Pem file and how does it differ from other OpenSSL Generated Key File Formats?

How to determine if a bash variable is empty?