Buy or Renew
Buy or Renew
Cisco + Splunk: It’s a new day for your data. Learn more.
 
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
346
Views
0
Helpful
1
Replies

cant ssh over internet

jasonbrown23
Level 1
Level 1

‎11-07-2013 01:37 PM - edited ‎03-04-2019 09:31 PM

i keep getting a Connection refused when i try and ssh over the net i know it has somthign to do with my access list but i mess with it and can't get it to work.


!

username XXXXXXXXXX password 7 1453020A1B0A7B727C70

!

!

!

archive

log config

  hidekeys

!

!

ip ssh version 2

!

!

!

interface FastEthernet0

bandwidth 60000

ip address dhcp

ip access-group out_in in

ip nat outside

ip virtual-reassembly

load-interval 30

duplex auto

speed auto

!

interface FastEthernet1

ip address 192.168.1.1 255.255.255.0

ip access-group in_out out

ip nat inside

ip virtual-reassembly

load-interval 30

duplex auto

speed auto

!

interface FastEthernet2

!

interface FastEthernet3

!

interface FastEthernet4

!

interface FastEthernet5

!

interface FastEthernet6

!

interface FastEthernet7

!

interface FastEthernet8

!

interface FastEthernet9

!

interface Vlan1

ip address 192.168.5.1 255.255.255.0

ip nat inside

ip virtual-reassembly

shutdown

!

interface Async1

no ip address

encapsulation slip

!

ip forward-protocol nd

ip route 0.0.0.0 0.0.0.0 dhcp

no ip http server

no ip http secure-server

!

!

ip nat inside source list 101 interface FastEthernet0 overload

ip nat inside source static tcp 192.168.1.129 1788 68.204.31.25 1788 extendable

ip nat inside source static udp 192.168.1.129 1788 68.204.31.25 1788 extendable

ip nat inside source static tcp 192.168.1.6 13531 68.204.31.25 13531 extendable

ip nat inside source static udp 192.168.1.6 13531 68.204.31.25 13531 extendable

!

ip access-list extended in_out

permit tcp any host 192.168.1.6 eq 13531

permit ip any any

ip access-list extended out_in

permit tcp any host 68.204.31.25 eq 13531

permit ip any any

!

access-list 101 permit ip 192.168.5.0 0.0.0.255 any

access-list 101 permit ip 192.168.1.0 0.0.0.255 any

!

!

!

!

!

!

control-plane

!        

!

line con 0

line 1

modem InOut

stopbits 1

speed 115200

flowcontrol hardware

line aux 0

line vty 0 4

password 7 054F160E36421F50415D

login local

transport input ssh

!

end

Labels:
0 Helpful
1 Reply 1

jasonbrown23
Level 1
Level 1

‎11-07-2013 01:55 PM

nvm got it

ip nat inside source static tcp 192.168.1.1 22 interface FastEthernet0/0 22

0 Helpful
Getting Started

Find answers to your questions by entering keywords or phrases in the Search bar above. New here? Use these resources to familiarize yourself with the community:

Customers Also Viewed These Support Documents
Review Cisco Networking products for a $25 gift card