on 20-02-2017 10:10 AM
I'm on your 250G broadband package. I've just switched over from a Huawei E5573 to a Huawei B315. I used to have a setup with the E5573 where I had virtual servers defined for ssh (port 22) and vpn (port 1194) to redirect from the E5573 to an internal server. The E5573 developed a fault, so Three was good enough to allow me to upgrade to a B315. However, I've set up the virtual servers in the same way as I had on the E5573, but the network setup seems to be different in the Three network for the new router. Is the B315 now using a shared public IP, where the W5573 had it's own?
When I attempt to connect to the ssh service from my phone (also on Three), I can see packets com in on port 22, but the source address is slightly different than my phone IP (third octet is 43 instead of 45), so while traffic does seem to be coming in to port 22 on the linux machine, return packets go back out to the incorrect IP address.
Any ideas? I've got a bunch of home automation stuff I need to get access to, and a solution to this would be greatly appreciated.
on 01-03-2017 02:05 PM
Just to close off this thread, and not leave it hanging. I've had many PM's with the support people over this issue. Unfortunately, there is no fix for this issue (a Three handset talking to a virtual service on a B315, which is also on the Three network). Here's a list of use cases I've tested, for added information (ssh server is a virtual service (port redirect) on the device):
Handset SSH Server Working?
----------- ------------------ --------
Three Netopia on Eir YES
Three E5573 on Three YES
On Wifi B315 on Three YES
Meteor B315 on Three YES
Vodafone B315 on Three YES
Three B315 on Three NO (my use case)
Also, one interesting aspect of the issue is that the source IP address that gets to the the ssh daemon is slightly different to the one I see when I do "what is my ip address" on the handset.
According to Three, there is no change they can make that will get around the problem I'm having.
There are two possible workarounds:
1. I can switch my handset to another provider (shown to be working with friends and family handsets)
2. I can replace the B315 router with and E5573 modem.
As of this morning, I have ordered a replacement E5573, as it's hassle to switch networks on my handset. I believe this will work, as I previously had an E5573 for over a year until it stopped working last month.
Thanks to the support people for their investigations on this.
on 21-02-2017 12:07 PM
I'm looking to be able to ssh/vpn into my home by using the "virtual server" facility on the Huawei router.
This used to work perfectly on the E5573, but does not on the B315.
The two ports i've set up as virtual services on the router are tcp/22 (for ssh) and udp/1194 (for openVPN), redirected from 192.168.8.1 (B315) to 192.168.8.3 (internal linux box). When I ssh into the router from outside, I can see packets on the 192.168.8.3 machine coming in on port 22 as I'd expect, but nothing gets back out to the ssh client device. There seems a mismatch between what IP address the client device is reporting (using 'what is my ip'), and what the 192.168.8.3 sees as the client ip (one of the digits in the IP address is different)
Here is an example screen of the virtual server screen. I'm using wan port 22 and lan port 22, and LAN IP 192.168.8.3 (I've a static IP on the linux box)
Any help on this is appreciated.
on 21-02-2017 01:34 PM
Last Saturday, 18th Feb. The E5573 developed a fault, and would not connect any more.
on 21-02-2017 02:13 PM
Thanks for the info. I'm looking into this now and I'll come back to you here when I have an update for you.
21-02-2017 03:10 PM - edited 21-02-2017 03:16 PM
Did ye change something on your side? It's working now! Both SSH and VPN are passing traffic between my phone any my internal network.
Edit: Spoke too soon. So it works when my phone is on a different wifi (not at home), but not when the phone is on 3G/4G. So it seems another bit of digging is required. Seems the B315 side might be OK. It may be the iPhone (on the Three network) side, or a combination of both.
on 21-02-2017 07:43 PM
I'd be very interested to see what you find out.
I'm also using a B315 and I've had problems setting up a port forward from the B315 to a SSH server on my network. I set up a virtual server on the B315 and using an online Open Port Checking tool I could see that the port was open. However I could never successfully connect when testing from my network. i.e. LocalMachine->B315->Three->Three->B315->SSHServer.
I just tried accessing the SSH server from my phone network (Vodafone) and it seems to work. i.e. Phone->Vodafone->Three->B315->SSHServer.
I also can't connect to my VPN provider using UDP... but that'd another issue entirely!
22-02-2017 02:19 PM - edited 22-02-2017 02:39 PM
I spoke too soon. It seems that it works for all networks EXCEPT a device on the Three network. So, a device on Vodafone can ssh in no problem. A device on my work wifi can also ssh in no problem.
However, my iPhone (on the Three network) cannot log in. Somewhere between my iPhone and the B315, the IP address is changed, so that any packets going back to the phone get lost.
For example, my iPhone's public IP address is currently x.x.43.3. But when I sniff the traffic on my linux machine behind the B315, it seems to be x.x.45.3. Not sure why this is happening, but the problem seems to be limited to my two devices on the Three network talking to each other. Any ideas?
By the way, the new router if v.fast!
I just tried it on another device on the Three network, and it's the same problem.