<html><head><meta http-equiv="content-type" content="text/html; charset=utf-8"></head><body dir="auto"><div>Hope you at least have employed a firewall such as via webmin. Hackers are likely to be targeting your box some day. Just saying from experience. <br><br>Sent from my iPhone, Lu Vencl</div><div><br>On Jan 12, 2014, at 1:00 AM, Jim W7RY <<a href="mailto:w7ry@centurytel.net">w7ry@centurytel.net</a>> wrote:<br><br></div><blockquote type="cite"><div>
<meta content="text/html; charset=ISO-8859-1" http-equiv="Content-Type">
One of the very first things to do when testing connection issues is
to put the node in the DMZ of the router. Easy, simple and can
quickly eliminate lots of settings.<br>
<br>
In fact, my node is on the DMZ with a strong password. Never had an
issue.<br>
<br>
73<br>
Jim W7RY<br>
<br>
<div class="moz-cite-prefix">On 1/11/2014 7:21 PM, Doug Crompton
wrote:<br>
</div>
<blockquote cite="mid:BLU172-W3363E5103449C7AC27F048BABD0@phx.gbl" type="cite">
<style><!--
.hmmessage P
{
margin:0px;
padding:0px
}
body.hmmessage
{
font-size: 12pt;
font-family:Calibri
}
--></style>
<div dir="ltr"><font style="" face="Tahoma">OK I think this is
solved. Unfortunately it is hard to diagnose all problems when
you have an inexperienced person at the other end. <br>
<br>
It turns out the router was forwarding the right port BUT it
was set to tcp instead of udp. I had gone over this several
times with the operator and I had thought it was right but
when we looked at it again it was wrong.<br>
<br>
When set in the tcp mode it did accept connections but only
for a short window of time after a prior disconnect from the
other direction.<br>
<br>
Thanks for all the input and sorry to cause all the back and
forth on this. I learned that you have to be extremely concise
when dealing with someone remotely who is inexperienced! <br id="FontBreak">
</font><br>
<b><font style="font-size:16pt;" size="4">73 Doug</font><font style="font-size:16pt;" size="4"><br>
</font><font style="font-size:16pt;" size="4">WA3DSP</font><font style="font-size:16pt;" size="4"><br>
</font><font style="font-size:16pt;" size="4"><a class="moz-txt-link-freetext" href="http://www.crompton.com/hamradio">http://www.crompton.com/hamradio</a></font></b><font style="font-size:16pt;" size="4"><br>
</font><br>
<br>
<div>
<hr id="stopSpelling">Subject: Re: [App_rpt-users] Incoming
connects<br>
From: <a class="moz-txt-link-abbreviated" href="mailto:tim.sawyer@mac.com">tim.sawyer@mac.com</a><br>
Date: Fri, 10 Jan 2014 20:29:46 -0800<br>
CC: <a class="moz-txt-link-abbreviated" href="mailto:app_rpt-users@ohnosec.org">app_rpt-users@ohnosec.org</a><br>
To: <a class="moz-txt-link-abbreviated" href="mailto:doug@crompton.com">doug@crompton.com</a><br>
<br>
Do a “tcpdump port 4569” at the Linux command line and incite
a connect from another node. You should see inbound packets.
<div><br>
</div>
<div>I have seen ISP’s block port 4569 but not FiOS. I’m on
FiOS with an actiontek router and it works fine.<br>
<div>
<span class="ecxApple-style-span" style="border-collapse:separate;color:rgb(0, 0,
0);font-family:Verdana;font-style:normal;font-variant:normal;font-weight:normal;letter-spacing:normal;line-height:normal;orphans:2;text-align:auto;text-indent:0px;text-transform:none;white-space:normal;widows:2;word-spacing:0px;"><span class="ecxApple-style-span" style="border-collapse:separate;color:rgb(0, 0,
0);font-family:Verdana;font-style:normal;font-variant:normal;font-weight:normal;letter-spacing:normal;line-height:normal;orphans:2;text-indent:0px;text-transform:none;white-space:normal;widows:2;word-spacing:0px;">
<div style="word-wrap:break-word;">--<br>
Tim<br>
:wq</div>
</span></span>
</div>
<br>
<div>
<div>On Jan 10, 2014, at 7:41 PM, Doug Crompton <<a moz-do-not-send="true" href="mailto:doug@crompton.com">doug@crompton.com</a>>
wrote:</div>
<br class="ecxApple-interchange-newline">
<blockquote>
<div class="ecxhmmessage" style="font-size:12pt;font-family:Calibri;font-style:normal;font-variant:normal;font-weight:normal;letter-spacing:normal;line-height:normal;text-align:start;text-indent:0px;text-transform:none;white-space:normal;word-spacing:0px;">
<div dir="ltr"><font face="Tahoma">I am remotely
trying to troubleshoot a friends new Allstar
installation. I can ssh in and connect out to
nodes but I cannot connect in to the system from
external nodes. Port 4569 is forwarded.<br>
<br>
I discovered this link -<br>
<br>
<a moz-do-not-send="true" href="http://www.voip-info.org/wiki/view/IAX" target="_blank">http://www.voip-info.org/wiki/view/IAX</a><br>
<br>
about consistent NAT and I was wondering if that
might be the problem.<br>
<br>
I was able to connect in one time right after a
reboot which might support the NAT issue.<br>
<br>
The router is an Actiontek MI424WR GigE as
supplied by Verizon on their FIOS system.<br>
<br>
Is anyone else having a problem with this router
or have any ideas on this?<span class="ecxApple-converted-space"> </span></font><br id="ecxFontBreak">
<br>
<font face="Tahoma">Nothing is logged at the server
or shows up in the client on the system which kind
of points to a routing failure.</font><br>
<br>
<font face="Tahoma">Is there a good way to check for
open port 4569 as I don't think normal port scan
programs will check this</font>.<br>
<br>
<b><font style="font-size:16pt;" size="4">73 Doug</font><font style="font-size:16pt;" size="4"><br>
</font><font style="font-size:16pt;" size="4">WA3DSP</font><font style="font-size:16pt;" size="4"><br>
</font><font style="font-size:16pt;" size="4"><a moz-do-not-send="true" href="http://www.crompton.com/hamradio" target="_blank">http://www.crompton.com/hamradio</a></font></b><font style="font-size:16pt;" size="4"><br>
</font></div>
_______________________________________________<br>
App_rpt-users mailing list<br>
<a moz-do-not-send="true" href="mailto:App_rpt-users@ohnosec.org">App_rpt-users@ohnosec.org</a><br>
<a moz-do-not-send="true" href="http://ohnosec.org/cgi-bin/mailman/listinfo/app_rpt-users" target="_blank">http://ohnosec.org/cgi-bin/mailman/listinfo/app_rpt-users</a></div>
</blockquote>
</div>
<br>
</div>
</div>
</div>
<br>
<fieldset class="mimeAttachmentHeader"></fieldset>
<br>
<pre wrap="">_______________________________________________
App_rpt-users mailing list
<a class="moz-txt-link-abbreviated" href="mailto:App_rpt-users@ohnosec.org">App_rpt-users@ohnosec.org</a>
<a class="moz-txt-link-freetext" href="http://ohnosec.org/cgi-bin/mailman/listinfo/app_rpt-users">http://ohnosec.org/cgi-bin/mailman/listinfo/app_rpt-users</a>
</pre>
</blockquote>
<br>
</div></blockquote><blockquote type="cite"><div><span>_______________________________________________</span><br><span>App_rpt-users mailing list</span><br><span><a href="mailto:App_rpt-users@ohnosec.org">App_rpt-users@ohnosec.org</a></span><br><span><a href="http://ohnosec.org/cgi-bin/mailman/listinfo/app_rpt-users">http://ohnosec.org/cgi-bin/mailman/listinfo/app_rpt-users</a></span><br></div></blockquote></body></html>