Hi folks,
first of all thanks for all the effort with the forum and omv, great work!
I've been using synology for quite a while and went xpenology with a custom build that I've been updating with new hardware from time to time. I switched to omv for numerous reasons the last days, and its working nicely so far , except:
Local connections are fine, but I can't get access from WAN. I'm on a IPv6 + DS-Lite, but thats usually not the issue. Port forwarding seems ok, I'm currently only testing with port SSH, since i will only use ssh tunnels later on for security reasons and maybe a pydio instance directly available for convenience. When I test the ports with a online port scanner, the result is a access denied on other ports than 22 (I guess my fritzbox sends ICMP replies) and a timeout on port 22.
Am I missing something? The network/firewall/hosts config is stock right now, so could something be blocking?? I'm still no expert on the shell, so could someone help me out on this? Local IPv6/IPv4 access is working, both work with ssh/gui/samba/etc...
Edit (some infos):
================================================================================
= Network interfaces
================================================================================
1: lo: <LOOPBACK,UP,LOWER_UP> mtu 16436 qdisc noqueue state UNKNOWN
link/loopback 00:00:00:00:00:00 brd 00:00:00:00:00:00
inet 127.0.0.1/8 scope host lo
inet6 ::1/128 scope host
valid_lft forever preferred_lft forever
2: eth0: <BROADCAST,MULTICAST> mtu 1500 qdisc noop state DOWN qlen 1000
link/ether fc:aa:14:21:81:c7 brd ff:ff:ff:ff:ff:ff
3: eth1: <BROADCAST,MULTICAST,UP,LOWER_UP> mtu 1500 qdisc pfifo_fast state UP qlen 1000
link/ether fc:aa:14:21:81:c5 brd ff:ff:ff:ff:ff:ff
inet 192.168.2.3/24 brd 192.168.2.255 scope global eth1
inet6 2001:a60:16fd:7301:feaa:14ff:fe21:81c5/64 scope global
valid_lft forever preferred_lft forever
inet6 2001:a60:16be:f401:feaa:14ff:fe21:81c5/64 scope global
valid_lft forever preferred_lft forever
inet6 fe80::feaa:14ff:fe21:81c5/64 scope link
valid_lft forever preferred_lft forever
--------------------------------------------------------------------------------
Interface information eth0:
===========================
Settings for eth0:
Supported ports: [ TP ]
Supported link modes: 10baseT/Half 10baseT/Full
100baseT/Half 100baseT/Full
1000baseT/Full
Supported pause frame use: No
Supports auto-negotiation: Yes
Advertised link modes: 10baseT/Half 10baseT/Full
100baseT/Half 100baseT/Full
1000baseT/Full
Advertised pause frame use: No
Advertised auto-negotiation: Yes
Speed: Unknown!
Duplex: Unknown! (255)
Port: Twisted Pair
PHYAD: 0
Transceiver: internal
Auto-negotiation: on
MDI-X: Unknown
Supports Wake-on: pg
Wake-on: pg
Current message level: 0x00000000 (0)
Link detected: no
--------------------------------------------------------------------------------
Driver information eth0:
========================
driver: alx
version:
firmware-version: alx
bus-info: 0000:02:00.0
supports-statistics: no
supports-test: no
supports-eeprom-access: no
supports-register-dump: yes
supports-priv-flags: no
--------------------------------------------------------------------------------
Interface information eth1:
===========================
Settings for eth1:
Supported ports: [ TP ]
Supported link modes: 10baseT/Half 10baseT/Full
100baseT/Half 100baseT/Full
1000baseT/Full
Supported pause frame use: No
Supports auto-negotiation: Yes
Advertised link modes: 10baseT/Half 10baseT/Full
100baseT/Half 100baseT/Full
1000baseT/Full
Advertised pause frame use: No
Advertised auto-negotiation: Yes
Speed: 1000Mb/s
Duplex: Full
Port: Twisted Pair
PHYAD: 2
Transceiver: internal
Auto-negotiation: on
MDI-X: on
Supports Wake-on: pumbg
Wake-on: g
Current message level: 0x00000007 (7)
drv probe link
Link detected: yes
--------------------------------------------------------------------------------
Driver information eth1:
========================
driver: e1000e
version: 2.3.2-k
firmware-version: 0.13-4
bus-info: 0000:00:19.0
supports-statistics: yes
supports-test: yes
supports-eeprom-access: yes
supports-register-dump: yes
supports-priv-flags: no
================================================================================
= IP packet filter
================================================================================
IPv4:
=====
Chain INPUT (policy ACCEPT)
target prot opt source destination
ACCEPT all -- anywhere anywhere
Chain FORWARD (policy ACCEPT)
target prot opt source destination
Chain OUTPUT (policy ACCEPT)
target prot opt source destination
ACCEPT all -- anywhere anywhere
--------------------------------------------------------------------------------
IPv6:
=====
Chain INPUT (policy ACCEPT)
target prot opt source destination
ACCEPT all anywhere anywhere
ACCEPT all anywhere anywhere
Chain FORWARD (policy ACCEPT)
target prot opt source destination
Chain OUTPUT (policy ACCEPT)
target prot opt source destination
ACCEPT all anywhere anywhere
tcp6 0 0 :::22 :::* LISTEN 2821/sshd
So long,
Stoney