-2

I need to connect to my computer via ssh through Mikrotik router having a static IP address. Router config:

[admin@MikroTik] /ip firewall nat> print
 0   chain=srcnat action=masquerade out-interface=ether1-gateway 
 1   chain=srcnat action=masquerade out-interface=bridge-local 
 2   chain=dstnat action=dst-nat to-addresses=192.168.1.18 to-ports=22 
     protocol=tcp dst-address-type=local dst-port=23

That's how I can connect from local router's web:

ssh user@192.168.1.18 -p 22 //directly
ssh user@192.168.1.1 -p 23 //router port forwarding
ssh user@109.173.41.*** -p 23 //router's static address

But now I try to connect from some other web with the last command - and it fails with timeout exception. What's the problem? Please tell I have to provide any more information about router configuration. Thank you!

Update: firewall rules I do have, only rules 0, 1, 3, 4 show traffic:

[admin@MikroTik] /ip firewall filter> print
 0   chain=forward action=accept connection-state=established 
 1   chain=forward action=accept connection-state=related 
 2   chain=forward action=accept protocol=igmp 
 3   chain=input action=accept protocol=icmp 
 4   chain=input action=accept connection-state=established 
 5   chain=input action=accept connection-state=related 
 6   chain=input action=accept protocol=udp dst-address=224.0.0.0/4 in-interface=ether1-gateway 
 7   chain=forward action=accept protocol=udp dst-address=224.0.0.0/4 in-interface=ether1-gateway out-interface=wlan1 
 8   chain=input action=accept protocol=udp dst-port=1001 
 9   chain=forward action=accept protocol=udp dst-port=5500
awfun
  • 2,316
  • 4
  • 31
  • 52

1 Answers1

3

Some ISPs will block traffic to services on their customer's equipment in order to prevent them from running servers.

TCP port 23 is the well-known service port for the telnet daemon. If your ISP is blocking the port, trying a few ports over 1024 may provide the connectivity that you are looking for.

Rich Alloway - RogueWave
  • 239
  • 1
  • 4