Author Topic: Outside Access; No access with high ports?  (Read 545 times)

brononius

  • Guru
  • ****
  • Posts: 378
  • Trying to keep it simple and centralized...
    • View Profile
    • OnIrIa - linuxMCE blog (runs on ... linuxmce server)
Outside Access; No access with high ports?
« on: December 29, 2011, 10:40:56 am »
I've played around to get the remote access working.  My ISP blocks all ports below 1024. So i needed to use a port higher then that.
I thought of using an easy port, namely 12345. But this didn't work.  ???
I check with my ISP (Belgium cableprovider telenet), but of course they couldn't help me. You know those ISP, they're GOD.  :-X
After a lot of testing and changing, i found out that when i use fe port 2222, it works. But with 12345 it doesn't?!

So if others have problems, try this (or another) port?



Any idea how this come?
If it's a restriction in the server, maybe best to let us choose between some? A drop-down menu or so? Would be a bit more userfriendly, no?

For example
Allow outside access to the website on port80
443
1027
1232
2375
custom
Version: linuxMCE 1004 (v 2012-07-01)
Extra's: Cacti, webmin, phpmyadmin, joomla

Server: MSI MS-7519 / E7400 2,8GB / 4GB / SSD 60GB / Radeon HD4350 / RTL8111 - 3C905C-TX
Orbiters: HTC Desire Z, HP PocketPC, Samsung Galaxy S, iPAD, ASUS eeePAD
Automation: EIB technology, KNX IP ROUTER 750
Phones: Cisco 7940, Cisco 7960
Camera's: IPCAM02

Kooma

  • Veteran
  • ***
  • Posts: 102
    • View Profile
Re: Outside Access; No access with high ports?
« Reply #1 on: December 29, 2011, 01:40:35 pm »
Hi, not sure exactly if you refer to this, but in case you've missed it:
Web admin/lmce-admin -> Advanced -> Network -> Firewall rules.

brononius

  • Guru
  • ****
  • Posts: 378
  • Trying to keep it simple and centralized...
    • View Profile
    • OnIrIa - linuxMCE blog (runs on ... linuxmce server)
Re: Outside Access; No access with high ports?
« Reply #2 on: December 29, 2011, 01:56:25 pm »
Yep, that's the place where i did all my configuration...

In short, for me port '12345' isn't working.
'2222' is working.
Version: linuxMCE 1004 (v 2012-07-01)
Extra's: Cacti, webmin, phpmyadmin, joomla

Server: MSI MS-7519 / E7400 2,8GB / 4GB / SSD 60GB / Radeon HD4350 / RTL8111 - 3C905C-TX
Orbiters: HTC Desire Z, HP PocketPC, Samsung Galaxy S, iPAD, ASUS eeePAD
Automation: EIB technology, KNX IP ROUTER 750
Phones: Cisco 7940, Cisco 7960
Camera's: IPCAM02

merkur2k

  • Addicted
  • *
  • Posts: 513
    • View Profile
Re: Outside Access; No access with high ports?
« Reply #3 on: December 29, 2011, 04:07:17 pm »
the firewall options are just an interface to iptables, and dont do any artificial filtering of ports. seems to me like your isp is probably blocking that too, but you could use tcpdump on the external interface to look for connection attempts.
must not be any competition there if the isp can get away with such a stupid policy :(

brononius

  • Guru
  • ****
  • Posts: 378
  • Trying to keep it simple and centralized...
    • View Profile
    • OnIrIa - linuxMCE blog (runs on ... linuxmce server)
Re: Outside Access; No access with high ports?
« Reply #4 on: December 29, 2011, 09:40:44 pm »
You won't believe it. This was 'the law of Murphy'.

I just did some extra digging in my providers manuals (well hidden of course), and these are the ports that are blocked:
  • all ports from 0 till 1023
  • port 1080
  • sensitive ports for abuse: 12345, 12346, 31337 tot en met 31339, 31784, 27374, 1243, 31785 > 31792, 4444, 1847, 1900, 3127

btw you're right about the stupid policy. A lot of customers are complaining about the ISP policies. But in fact, we can only choose between 2 big ISP in Belgium. And some small players, but you can guess about the pricing/quality. I dare you to find a good SIP provider over here. Welcome to Belgium... ;)


But this is just another prove that linuxmce is doing what he must do. Just a pitty that they're so many details that can give you headache...
Version: linuxMCE 1004 (v 2012-07-01)
Extra's: Cacti, webmin, phpmyadmin, joomla

Server: MSI MS-7519 / E7400 2,8GB / 4GB / SSD 60GB / Radeon HD4350 / RTL8111 - 3C905C-TX
Orbiters: HTC Desire Z, HP PocketPC, Samsung Galaxy S, iPAD, ASUS eeePAD
Automation: EIB technology, KNX IP ROUTER 750
Phones: Cisco 7940, Cisco 7960
Camera's: IPCAM02