Cisco Support Community
cancel
Showing results for 
Search instead for 
Did you mean: 
New Member

Port 22 over VPN - Urgent Help

Would port 22 needs to be opened if we already have a VPN tunnel.

3 REPLIES
Bronze

Re: Port 22 over VPN - Urgent Help

If you are trying to SSH to host inside the VPN encryption domain, then no. If you want to SSH to the VPN endpoint itself then yes.

New Member

Re: Port 22 over VPN - Urgent Help

What we are trying to do is:

- Nat 217.169.63.147 to redirect to an internal IP of 195.118.216.164

- Open the firewall to allow port 22 inbound to 217.169.63.147 (before the changes get made that port 22 would need to be opened if we already have a VPN tunnel?)

Scenario is - files will be sent from one side of the VPN tunnel (Riskwrite) through SFTP (22) to our server of x.x.216.164

Bronze

Re: Port 22 over VPN - Urgent Help

Hello,

Opening port 22 or ceating a VPN are both technically possible it depends on your companys security policy.

I assume IP 195.118.216.164 is in a DMZ? In all companys I've worked for there are certain security processes around allowing file transfers from 3rd parties and in particular from the internet. Using SFTP is good but is preferable if you can lock this down to certain source IPs and the destination server should be in a DMZ NOT the internal network.

Thanks

575
Views
0
Helpful
3
Replies
CreatePlease to create content