<html><body><div style="color:#000; background-color:#fff; font-family:Courier New, courier, monaco, monospace, sans-serif;font-size:10pt"><SPAN style="RIGHT: auto">
<div style="MARGIN: 0in 0in 0pt" class=MsoNormal><FONT size=3><FONT face=Verdana>I had a port forwarding issue with a Xipar node on its own ISP. I bypassed the router for testing purposes ONLY. The router was blocking the ports.<SPAN style="mso-spacerun: yes"> </SPAN>Seeing I had to wait for another router to arrive, I decided to leave the node unprotected just to see if Hackers would actually find it.<SPAN style="mso-spacerun: yes"> </SPAN>With in a day, there were so many hits, I couldn't type a single character without it scrolling off the screen.<SPAN style="mso-spacerun: yes"> </SPAN>I let it run away with itself until I got another router, then powered down the modem, hooked up the router. I waited before applying power to the modem. I got a different IP, everything was fine after that.....<SPAN style="mso-spacerun: yes"> </SPAN></FONT></FONT></div>
<div style="MARGIN: 0in 0in 0pt" class=MsoNormal><FONT size=3><FONT face=Verdana>JK<SPAN style="mso-spacerun: yes"> </SPAN></FONT></FONT></div>
<div style="RIGHT: auto">knowledge is experience!!! </SPAN></div>
<div><BR></div>
<DIV style="FONT-FAMILY: Courier New, courier, monaco, monospace, sans-serif; FONT-SIZE: 10pt">
<DIV style="FONT-FAMILY: HelveticaNeue, Helvetica Neue, Helvetica, Arial, Lucida Grande, sans-serif; FONT-SIZE: 12pt">
<DIV dir=ltr>
<DIV style="BORDER-BOTTOM: #ccc 1px solid; BORDER-LEFT: #ccc 1px solid; PADDING-BOTTOM: 0px; LINE-HEIGHT: 0; MARGIN: 5px 0px; PADDING-LEFT: 0px; PADDING-RIGHT: 0px; HEIGHT: 0px; FONT-SIZE: 0px; BORDER-TOP: #ccc 1px solid; BORDER-RIGHT: #ccc 1px solid; PADDING-TOP: 0px" class=hr contentEditable=false readonly="true"></DIV><FONT size=2 face=Arial><B><SPAN style="FONT-WEIGHT: bold">From:</SPAN></B> Lu Vencl <vencl@att.net><BR><B><SPAN style="FONT-WEIGHT: bold">To:</SPAN></B> Jim W7RY <w7ry@centurytel.net> <BR><B><SPAN style="FONT-WEIGHT: bold">Cc:</SPAN></B> "app_rpt-users@ohnosec.org" <app_rpt-users@ohnosec.org> <BR><B><SPAN style="FONT-WEIGHT: bold">Sent:</SPAN></B> Sunday, January 12, 2014 7:48 AM<BR><B><SPAN style="FONT-WEIGHT: bold">Subject:</SPAN></B> Re: [App_rpt-users] Incoming connects<BR></FONT></DIV>
<DIV class=y_msg_container><BR>
<DIV id=yiv7002267199>
<DIV>
<DIV>Hope you at least have employed a firewall such as via webmin. Hackers are likely to be targeting your box some day. Just saying from experience. <BR clear=none><BR clear=none>Sent from my iPhone, Lu Vencl</DIV>
<DIV>
<DIV id=yiv7002267199yqtfd21814 class=yiv7002267199yqt9456833226><BR clear=none>On Jan 12, 2014, at 1:00 AM, Jim W7RY <<A href="mailto:w7ry@centurytel.net" shape=rect rel=nofollow target=_blank ymailto="mailto:w7ry@centurytel.net">w7ry@centurytel.net</A>> wrote:<BR clear=none><BR clear=none></DIV></DIV>
<DIV id=yiv7002267199yqtfd72116 class=yiv7002267199yqt9456833226>
<BLOCKQUOTE type="cite">
<DIV></DIV></BLOCKQUOTE></DIV></DIV>
<DIV id=yiv7002267199yqtfd85224 class=yiv7002267199yqt9456833226>
<DIV>One of the very first things to do when testing connection issues is to put the node in the DMZ of the router. Easy, simple and can quickly eliminate lots of settings.<BR clear=none><BR clear=none>In fact, my node is on the DMZ with a strong password. Never had an issue.<BR clear=none><BR clear=none>73<BR clear=none>Jim W7RY<BR clear=none><BR clear=none>
<DIV class=yiv7002267199moz-cite-prefix>On 1/11/2014 7:21 PM, Doug Crompton wrote:<BR clear=none></DIV>
<BLOCKQUOTE type="cite">
<STYLE>#yiv7002267199 #yiv7002267199 --
.yiv7002267199hmmessage P
{
margin:0px;padding:0px;}
#yiv7002267199 body.yiv7002267199hmmessage
{
font-size:12pt;font-family:Calibri;}
#yiv7002267199 </STYLE>
<DIV dir=ltr><FONT face=Tahoma>OK I think this is solved. Unfortunately it is hard to diagnose all problems when you have an inexperienced person at the other end. <BR clear=none><BR clear=none>It turns out the router was forwarding the right port BUT it was set to tcp instead of udp. I had gone over this several times with the operator and I had thought it was right but when we looked at it again it was wrong.<BR clear=none><BR clear=none>When set in the tcp mode it did accept connections but only for a short window of time after a prior disconnect from the other direction.<BR clear=none><BR clear=none>Thanks for all the input and sorry to cause all the back and forth on this. I learned that you have to be extremely concise when dealing with someone remotely who is inexperienced! <BR id=yiv7002267199FontBreak clear=none></FONT><BR clear=none><B><FONT style="FONT-SIZE: 16pt" size=4>73 Doug</FONT><FONT style="FONT-SIZE: 16pt" size=4><BR
clear=none></FONT><FONT style="FONT-SIZE: 16pt" size=4>WA3DSP</FONT><FONT style="FONT-SIZE: 16pt" size=4><BR clear=none></FONT><FONT style="FONT-SIZE: 16pt" size=4><A class=yiv7002267199moz-txt-link-freetext href="http://www.crompton.com/hamradio" shape=rect rel=nofollow target=_blank>http://www.crompton.com/hamradio</A></FONT></B><FONT style="FONT-SIZE: 16pt" size=4><BR clear=none></FONT><BR clear=none><BR clear=none>
<DIV>
<DIV style="BORDER-BOTTOM: #ccc 1px solid; BORDER-LEFT: #ccc 1px solid; PADDING-BOTTOM: 0px; LINE-HEIGHT: 0; MARGIN: 5px 0px; PADDING-LEFT: 0px; PADDING-RIGHT: 0px; HEIGHT: 0px; FONT-SIZE: 0px; BORDER-TOP: #ccc 1px solid; BORDER-RIGHT: #ccc 1px solid; PADDING-TOP: 0px" class=hr contentEditable=false readonly="true"></DIV>Subject: Re: [App_rpt-users] Incoming connects<BR clear=none>From: <A class=yiv7002267199moz-txt-link-abbreviated href="mailto:tim.sawyer@mac.com" shape=rect rel=nofollow target=_blank ymailto="mailto:tim.sawyer@mac.com">tim.sawyer@mac.com</A><BR clear=none>Date: Fri, 10 Jan 2014 20:29:46 -0800<BR clear=none>CC: <A class=yiv7002267199moz-txt-link-abbreviated href="mailto:app_rpt-users@ohnosec.org" shape=rect rel=nofollow target=_blank ymailto="mailto:app_rpt-users@ohnosec.org">app_rpt-users@ohnosec.org</A><BR clear=none>To: <A class=yiv7002267199moz-txt-link-abbreviated href="mailto:doug@crompton.com" shape=rect rel=nofollow
target=_blank ymailto="mailto:doug@crompton.com">doug@crompton.com</A><BR clear=none><BR clear=none>Do a “tcpdump port 4569” at the Linux command line and incite a connect from another node. You should see inbound packets.
<DIV><BR clear=none></DIV>
<DIV>I have seen ISP’s block port 4569 but not FiOS. I’m on FiOS with an actiontek router and it works fine.<BR clear=none>
<DIV><SPAN style="LINE-HEIGHT: normal; WIDOWS: 2; TEXT-TRANSFORM: none; FONT-VARIANT: normal; FONT-STYLE: normal; TEXT-INDENT: 0px; BORDER-COLLAPSE: separate; FONT-FAMILY: Verdana; WHITE-SPACE: normal; ORPHANS: 2; LETTER-SPACING: normal; COLOR: rgb(0,0,0); FONT-WEIGHT: normal; WORD-SPACING: 0px" class=yiv7002267199ecxApple-style-span><SPAN style="LINE-HEIGHT: normal; WIDOWS: 2; TEXT-TRANSFORM: none; FONT-VARIANT: normal; FONT-STYLE: normal; TEXT-INDENT: 0px; BORDER-COLLAPSE: separate; FONT-FAMILY: Verdana; WHITE-SPACE: normal; ORPHANS: 2; LETTER-SPACING: normal; COLOR: rgb(0,0,0); FONT-WEIGHT: normal; WORD-SPACING: 0px" class=yiv7002267199ecxApple-style-span></SPAN></SPAN>
<DIV style="WORD-WRAP: break-word">--<BR clear=none>Tim<BR clear=none>:wq</DIV></DIV><BR clear=none>
<DIV>
<DIV>On Jan 10, 2014, at 7:41 PM, Doug Crompton <<A href="mailto:doug@crompton.com" shape=rect rel=nofollow target=_blank ymailto="mailto:doug@crompton.com">doug@crompton.com</A>> wrote:</DIV><BR class=yiv7002267199ecxApple-interchange-newline clear=none>
<BLOCKQUOTE>
<DIV style="TEXT-TRANSFORM: none; TEXT-INDENT: 0px; FONT: 12pt Calibri; WHITE-SPACE: normal; LETTER-SPACING: normal; WORD-SPACING: 0px" class=yiv7002267199ecxhmmessage>
<DIV dir=ltr><FONT face=Tahoma>I am remotely trying to troubleshoot a friends new Allstar installation. I can ssh in and connect out to nodes but I cannot connect in to the system from external nodes. Port 4569 is forwarded.<BR clear=none><BR clear=none>I discovered this link -<BR clear=none><BR clear=none><A href="http://www.voip-info.org/wiki/view/IAX" shape=rect rel=nofollow target=_blank>http://www.voip-info.org/wiki/view/IAX</A><BR clear=none><BR clear=none>about consistent NAT and I was wondering if that might be the problem.<BR clear=none><BR clear=none>I was able to connect in one time right after a reboot which might support the NAT issue.<BR clear=none><BR clear=none>The router is an Actiontek MI424WR GigE as supplied by Verizon on their FIOS system.<BR clear=none><BR clear=none>Is anyone else having a problem with this router or have any ideas on this?<SPAN class=yiv7002267199ecxApple-converted-space> </SPAN></FONT><BR
id=yiv7002267199ecxFontBreak clear=none><BR clear=none><FONT face=Tahoma>Nothing is logged at the server or shows up in the client on the system which kind of points to a routing failure.</FONT><BR clear=none><BR clear=none><FONT face=Tahoma>Is there a good way to check for open port 4569 as I don't think normal port scan programs will check this</FONT>.<BR clear=none><BR clear=none><B><FONT style="FONT-SIZE: 16pt" size=4>73 Doug</FONT><FONT style="FONT-SIZE: 16pt" size=4><BR clear=none></FONT><FONT style="FONT-SIZE: 16pt" size=4>WA3DSP</FONT><FONT style="FONT-SIZE: 16pt" size=4><BR clear=none></FONT><FONT style="FONT-SIZE: 16pt" size=4><A href="http://www.crompton.com/hamradio" shape=rect rel=nofollow target=_blank>http://www.crompton.com/hamradio</A></FONT></B><FONT style="FONT-SIZE: 16pt" size=4><BR clear=none></FONT></DIV>_______________________________________________<BR clear=none>App_rpt-users mailing list<BR clear=none><A
href="mailto:App_rpt-users@ohnosec.org" shape=rect rel=nofollow target=_blank ymailto="mailto:App_rpt-users@ohnosec.org">App_rpt-users@ohnosec.org</A><BR clear=none><A href="http://ohnosec.org/cgi-bin/mailman/listinfo/app_rpt-users" shape=rect rel=nofollow target=_blank>http://ohnosec.org/cgi-bin/mailman/listinfo/app_rpt-users</A></DIV></BLOCKQUOTE></DIV><BR clear=none></DIV></DIV></DIV><BR clear=none>
<FIELDSET class=yiv7002267199mimeAttachmentHeader></FIELDSET> <BR clear=none><PRE>_______________________________________________
App_rpt-users mailing list
<A class=yiv7002267199moz-txt-link-abbreviated href="mailto:App_rpt-users@ohnosec.org" shape=rect rel=nofollow target=_blank ymailto="mailto:App_rpt-users@ohnosec.org">App_rpt-users@ohnosec.org</A>
<A class=yiv7002267199moz-txt-link-freetext href="http://ohnosec.org/cgi-bin/mailman/listinfo/app_rpt-users" shape=rect rel=nofollow target=_blank>http://ohnosec.org/cgi-bin/mailman/listinfo/app_rpt-users</A>
</PRE></BLOCKQUOTE><BR clear=none>
<BLOCKQUOTE type="cite">
<DIV><SPAN>_______________________________________________</SPAN><BR clear=none><SPAN>App_rpt-users mailing list</SPAN><BR clear=none><SPAN><A href="mailto:App_rpt-users@ohnosec.org" shape=rect rel=nofollow target=_blank ymailto="mailto:App_rpt-users@ohnosec.org">App_rpt-users@ohnosec.org</A></SPAN><BR clear=none><SPAN><A href="http://ohnosec.org/cgi-bin/mailman/listinfo/app_rpt-users" shape=rect rel=nofollow target=_blank>http://ohnosec.org/cgi-bin/mailman/listinfo/app_rpt-users</A></SPAN><BR clear=none></DIV></BLOCKQUOTE></DIV></DIV></DIV><BR>
<DIV id=yqtfd80950 class=yqt9456833226>_______________________________________________<BR clear=none>App_rpt-users mailing list<BR clear=none><A href="mailto:App_rpt-users@ohnosec.org" shape=rect ymailto="mailto:App_rpt-users@ohnosec.org">App_rpt-users@ohnosec.org</A><BR clear=none><A href="http://ohnosec.org/cgi-bin/mailman/listinfo/app_rpt-users" shape=rect target=_blank>http://ohnosec.org/cgi-bin/mailman/listinfo/app_rpt-users</A><BR clear=none></DIV><BR><BR></DIV></DIV></DIV></div></body></html>