NO JOY Port knocker - not allowing access

markCFU

New Member
Joined
Dec 12, 2013
Messages
10
Reaction score
0
Hello,

I have just installed incredible PBX 13.13, Centos 6, on CrownCloud.

Everything is working fine except for remote access using port knocker.

in /var/log/knockd.log i can see that the knock was successful;

[2019-10-31 16:57] XX.XX.XXX.XXX: opencloseALL: Stage 1

[2019-10-31 16:57] XX.XX.XXX.XXX: opencloseALL: Stage 2

[2019-10-31 16:57] XX.XX.XXX.XXX: opencloseALL: Stage 3

[2019-10-31 16:57] XX.XX.XXX.XXX: opencloseALL: OPEN SESAME

[2019-10-31 16:57] opencloseALL: running command: /sbin/iptables -A INPUT -s XX.XX.XXX.XXX -j ACCEPT

However i can't get access, any ideas what I could be missing?

Thanks

Mark
 

wardmundy

Nerd Uno
Joined
Oct 12, 2007
Messages
15,407
Reaction score
2,736
Have you verified that iptables is in /sbin??
 

markCFU

New Member
Joined
Dec 12, 2013
Messages
10
Reaction score
0
Hi Ward!

My apologies for the delay in responding.

I have checked the directory /sbin and i can see that there is an entry called iptables (is that what you wanted me to check?)

Thanks

Mark
 

wardmundy

Nerd Uno
Joined
Oct 12, 2007
Messages
15,407
Reaction score
2,736
Does iptables -nL show the IP address whitelisted after the successful port knock?
 
  • Like
Reactions: ostridge

markCFU

New Member
Joined
Dec 12, 2013
Messages
10
Reaction score
0
Hi there,

after the knock i see the following in iptables -nL, just above the "Chain FORWARD (policy DROP)"

ACCEPT all -- XXX.XX.XXX.XXX 0.0.0.0/0 (XXX...= the ip i knocked from)

Could it be something to do with the CGNAT that my cellular provider operates?

Thanks

Mark
 

tbrummell

Guru
Joined
Jan 8, 2011
Messages
698
Reaction score
94
Location
Ottawa, Canada
Sure.
If you go to whatismyipaddress.com the IP that is displayed, is that the same IP PortKnocker is opening? We still need at least the first 2 octets to check if a different rule is blocking you.
 

Members online

PIAF 5 - Powered by 3CX

Forum statistics

Threads
22,566
Messages
138,904
Members
14,673
Latest member
vicndf