I've taken my N7 into work to see how well it works in an Enterprise environment as we're looking at purchasing tablets in the near future.
I've found an odd issue with DNS, internal resolution doesn't work, if I try and connect to or ping a hostname it responds with a DNS failure but if I connect or ping the corresponding IP address it works fine.
Connections to the internet work fine.
I've checked the DNS using ROM Toolbox and its displaying the correct DNS servers it just doesn't seem to be using them.
How can I get DNS to work for internal name resolution?
Thanks
Jon
When you try to ping or remote, are you just using the hostname? Try pinging it using hostname.domain .
poormatt said:
When you try to ping or remote, are you just using the hostname? Try pinging it using hostname.domain .
Click to expand...
Click to collapse
Tried the FQDN and it worked fine, thanks. I'm still in the MS Windows mindset of how thins should work.
Related
What is the best antivirus/firewall that i could use on an iis 7 server?
shawn10642 said:
What is the best antivirus/firewall that i could use on an iis 7 server?
Click to expand...
Click to collapse
Paid:
Sophos if you want to spend the time configuring it.
Symantec
AVG's server flavour.
Free:
Clam (it's what I use)
hey thanks for helping, another thing
1) i setup windows ftp 7.5 to iis 7.0 and setup went flawless, ping and everything went good, but i cant access the ftp server via ftp:// bccan.dyndns.org why??
shawn10642 said:
hey thanks for helping, another thing
1) i setup windows ftp 7.5 to iis 7.0 and setup went flawless, ping and everything went good, but i cant access the ftp server via ftp:// bccan.dyndns.org why??
Click to expand...
Click to collapse
If you're connecting from the outside of your network then you need to make sure of the following:
1. FTP is set up on your router to be forwarded to your IIS server
2. FTP site set to allow either all IP addresses to connect, or at least the external IP address you're coming in from (use www.whatsmyip.org to check your IP)
If you're connecting from within your network, you need to create a forward lookup zone in DNS for dyndns.org and add an A record of bccan with your server's internal IP address.
xaccers said:
If you're connecting from the outside of your network then you need to make sure of the following:
1. FTP is set up on your router to be forwarded to your IIS server
2. FTP site set to allow either all IP addresses to connect, or at least the external IP address you're coming in from (use www.whatsmyip.org to check your IP)
If you're connecting from within your network, you need to create a forward lookup zone in DNS for dyndns.org and add an A record of bccan with your server's internal IP address.
Click to expand...
Click to collapse
Also just to add, I would not worry as much about a software firewall on your IIS server , you will cause more problems than you will fix, as stated above if you only open the ftp port on your router to the outside, then no other connections will be able to get in ... Hardware firewalls/routers are a much better choice ..
As far as antivirus goes, it depends on how much money you want to spend, for free I would go with the ClamAV recommendation it works very well in a server environment.
Symantec which is not free really works well too ...
EDIT:
IMHO I would not use the machine name as your external DNS name, if that is what you are doing. That way you can use the machine name when connecting locally on your network and the DNS name when external ... It has just been my experience that using the same name for both machine and external DNS can cause all kinds of problems for other services you may want to run on that machine in the future ..
The IP number the streamer shows is just the local IP, meaning I can only connect from the local network???
If you want to access the streamer from outside your network and the streamer is on a local-only IP address then you'll need to set up a port forwarding rule (and possibly a corresponding firewall rule) on whatever device does the routing on your network (usually the ADSL Modem or Cable Router on a home network).
If you have a static IP for your ISP you can create a port forwarding rule in your router so that say the port that splashtop is running on is 6783, then you will forward all TCP/UDP traffic from port 6783 to the internal IP that is displayed in splashtop. Then in the splashtop app you set it up so that it connects to your home's ip address (you can find this by going to whatismyip) and port 6783.
So for example: the ip address for my home (from whatismyip) is 01.230.29.29, and splashtop is showing me 192.168.0.199, as well as port 6783 (you can see this under network in the desktop app), i will go in to my router, port forwarding, and then create a rule where any traffic to and from local/remote port 6783 will go to the computer at 192.168.0.199.
This is really easy and permanent if your router supports mac address reservation so that your computer will always have the same internal network IP. It is also easier if you have a static IP, however if you don't have a static IP you can use something like DynDNS's dynamic IP service to have an ip that will always connect to your home regardless of what the ip changes to.
Great video here, got it running the 1st try following this video.
http://www.youtube.com/watch?v=IMSVTRqkBU8&feature=player_embedded
Off Topic
Hey anyone using the latest verison of splashtop 1.4.5.3 on their pc? For some reason now, everytime my pc start up the splashtop desktop client does not start up even tho the setting for it is enable. I always have to use logmein to log into my pc and start the app. Anyone else? I never had this issue before updating to 1.4.5.3.
Thanks guys.
If you go to portforward.com it will go step by step with all your settings.
dazz87 said:
Hey anyone using the latest verison of splashtop 1.4.5.3 on their pc? For some reason now, everytime my pc start up the splashtop desktop client does not start up even tho the setting for it is enable. I always have to use logmein to log into my pc and start the app. Anyone else? I never had this issue before updating to 1.4.5.3.
Click to expand...
Click to collapse
its the same for me. I havent found a way to fix it.
Sent from my awesome Asus Transformer using XDA's premium app.
I set up remote desktop with mycloud/splashtop on my tf101. I can locally remote access my computer on the home network.
But I want to be able to access my computer from any network. Would the fact that when I was asked for permissions on my pc for either private networks or public networks, I checked private be the reason why i can't connect when using a network outside of my home network? If so, how do i change this permission.
Right now, when i try to connect to my computer using an outside network like my mobile data connection tethered from my phone, it says cannot reach.
You will need to do a port forwarding rule on your router. There r threads about this just do a search.
dazz87 said:
You will need to do a port forwarding rule on your router. There r threads about this just do a search.
Click to expand...
Click to collapse
Is that the only thing I'd have to do? I wouldn't have to add it as a new device connection on my transformer would I?
i forwarded the 3 ports from this link http://support-remote.splashtop.com...nect-to-my-home-computer-from-outside-of-home
and still it says cannot reach.
Also, I enabled discover over internet with my google account on my computer.
under the status tab on the splashtop application on my pc, it says the streamer is online with the following ip addresses, and only my local area connection is listed.
xdmds said:
i forwarded the 3 ports from this link http://support-remote.splashtop.com...nect-to-my-home-computer-from-outside-of-home
and still it says cannot reach.
Also, I enabled discover over internet with my google account on my computer.
under the status tab on the splashtop application on my pc, it says the streamer is online with the following ip addresses, and only my local area connection is listed.
Click to expand...
Click to collapse
You need to set the connection with your WAN IP not your local IP. On your PC go to whatsmyip.org or similar to find out what your current WAN IP address is.
If you don't have a static IP address your WAN IP will likely change at some point. You can get a free account at dyndns.com and set it up in your router (Google it). You can then connect to your PC using YOURUSERNAME.dyndns.org or whatever you setup in DynDNS.
The alternative is to use TeamViewer or LogMeIn or similar which will automatically keep track of your PC whenever it connects to the internet.
Remote access can be real pain in the butt when you are accessing over the WAN.
As mentioned in posts above you need to set up port forwarding on your router, ensure there are relevant firewall exceptions and use your external facing IP address and set up a dynamic DNS account if you don't have a static IP - some routers have built in support for dynamic DNS.
Log me in is a good free service for this but the android app is pricey (and not very good IMO) - while the interface is not ideal it does take away all of the annoying hassles.
If you do go down the dynamic DNS, port forwarding route you might find that remote desktop via 2X RDP or similar is better than splash top anyway - although you can't do remote desktop on windows vista/7 home editions.
good video here, got it working very first try following stepby step
http://www.youtube.com/watch?v=IMSVTRqkBU8&feature=youtube_gdata_player
Sent from my Transformer TF101 using Tapatalk
nvm turns out i only forwarded the ports on my router firewall. after also forwarding the ports in my modem i can now access from an outside network
xdmds said:
Also, I enabled discover over internet with my google account on my computer.
Click to expand...
Click to collapse
Just an FYI, but auto discovery doesn't work on the Android client yet, though it is coming (it is experimental in iOS).
Wyse PocketCloud does have this facility, though it doesn't stream video/games like Splashtop.
Regards,
Dave
I would try TeamViewer. On your PC you can install the host version. That way you can access your PC before login. TeamViewer works without making changes in your router/firewall.
The Android TeamViewer client is free.
Sent from my Transformer TF101 using Tapatalk
I finally fixed my issue with doing this last night. I was forwarding all 3 ports but I was doing TCP and UDP (which I must say I've done many times before and never had an issue) but I removed the forwarding from UDP field in my router and just left the 3 ports forwarded in TCP field. Today I can now connect and perfectly use my PC from work using Splashtop w00t!
I've just connected my 7 to our coporate wireless network but when I try to browse in Chrome to an internal URL it tries to do a search in Google then fails but if I put in the IP address it works fine.
Two internal DNS servers are being sent in the DHCP response so I don't understand why its not working.
I've tried using Fing to do DNS test but its errors with unable to resolve.
Internet access works fine.
Please could someone give me some help on how to resolve this?
Thanks
Jon
Does your corp net use proxy servers? If so you'll need to set your wifi connection to use it
Sent from my Nexus 7 using xda app-developers app
For anyone interested in data security the ability to encrypt network traffic is obviously important-- especially in light of the myriad of recent well publicized reports of private and government electronic snooping. It is also relevant to mention that to date no one has come close to cracking "TwoFish" encryption which can be used by SSH. With this in mind, consider the following tutorial which describes a method for encrypting all 3g, 4g, and Wi-Fi data, thus beefing up phone and personal data security.
Setting up a global SSH Tunnel on Android phones
This tutorial assumes the reader possesses a fully configured SSH server and rooted phone. In lieu of a server, (eg., the reader only has only a Windows-based operating system), research into CYGWIN is recommended. I use CYGWIN to run my SSH server and I have found that it is the most robust option for Windows users; however, setting this up on Windows can be a daunting task.
Setting up global SSH Tunnel on Android
1. Download 2 apps from the Google Playstore: ConnectBot and ProxyDroid
2. Install ConnectBot and ProxyDroid on your phone.
3. In ConnectBot set up Port forwards for your SSH connection. For "Type" field use "Dynamic (SOCKS)." For “Source Port” use 56001 or any local port not being used. The reasoning behind using port 56001 is this: System Ports (0-1023), User Ports (1024-49151), and the Dynamic and/or Private Ports (49152-65535)
4. Open ProxyDroid and configure as follows:
Host: 127.0.0.1
Port: 56001 (or the port you chose to use in step 3)
Proxy Type: SOCKS5
Global Proxy: Check the box
The above procedure accomplishes several things. First, ConnectBot remotely connects to your SSH server. Next, the ConnectBot connection forwards to the local port 56001. ProxyDroid then redirects all network traffic through the localhost on port 56001. Once you are connected through ConnectBot and ProxyDroid is activated all of your data will be tunneled through the encrypted ConnectBot session. This is an excellent way to set up a global proxy because it does not require manual configuration of any applications to connect through the proxy. You can test the functionality of the connection by opening up your phone browser and performing the Google search: What is my IP. If the proxy is functional you will see the WAN IP of the network of your SSH server. Additional and more thorough testing can be done with packet sniffers such as WireShark.
An application called "SSH Tunnel" is an alternative to accomplishing the above. However, I find ConnectBot and ProxyDroid is more elegant and gives better control-- not to mention being more sophisticated/chic. When correctly performed the ConnectBot and ProxyDroid method encrypts all 3g, 4g and Wi-Fi data on your phone. This is obviously useful for phone access of sensitive materials especially using unfamiliar or alien network connections. With the current proliferation of identity theft via electronic snooping on mobile devices I do not advocate using cellular phones for any banking or electronic transactions without setting up a robust and reliable encrypted connection.
I'm having trouble with this exact setup on Android 4.3 with DNS Proxy (proxydroid) enabled in China. When DNS Proxy is enabled, no traffic will come through at all. If I disable DNS Proxy, it works but without proxied DNS requests, I can't get to Youtube/twitter/FB.
Any ideas?
SSHTunnel for 4.2.2 is a much better alternative than running 2 separate apps and I still use it on my 4.2.2 tablet. But I don't want to downgrade my phone to 4.2.2 just for this
Android 4.3?
strifej said:
I'm having trouble with this exact setup on Android 4.3 with DNS Proxy (proxydroid) enabled in China. When DNS Proxy is enabled, no traffic will come through at all. If I disable DNS Proxy, it works but without proxied DNS requests, I can't get to Youtube/twitter/FB.
Any ideas?
SSHTunnel for 4.2.2 is a much better alternative than running 2 separate apps and I still use it on my 4.2.2 tablet. But I don't want to downgrade my phone to 4.2.2 just for this
Click to expand...
Click to collapse
Unfortunately, I have not done any testing with android 4.3 yet so I'm not sure why the dns request wouldn't be proxied. I'll look into it and get back to you.
DNS proxy on android 4.3
strifej said:
I'm having trouble with this exact setup on Android 4.3 with DNS Proxy (proxydroid) enabled in China. When DNS Proxy is enabled, no traffic will come through at all. If I disable DNS Proxy, it works but without proxied DNS requests, I can't get to Youtube/twitter/FB.
Any ideas?
SSHTunnel for 4.2.2 is a much better alternative than running 2 separate apps and I still use it on my 4.2.2 tablet. But I don't want to downgrade my phone to 4.2.2 just for this
Click to expand...
Click to collapse
So I finally had a chance to upgrade to 4.3 this week. I tested the dns proxy with proxydroid and it seems to be working fine. What rom are you using? I'm on Sacs rom and I would highly recommend it. Heres the link:
http://forum.xda-developers.com/showthread.php?t=2512983
4.4
Dr.Tautology said:
So I finally had a chance to upgrade to 4.3 this week. I tested the dns proxy with proxydroid and it seems to be working fine. What rom are you using? I'm on Sacs rom and I would highly recommend it. Heres the link:
http://forum.xda-developers.com/showthread.php?t=2512983
Click to expand...
Click to collapse
Tested on kitkat and is working fine. Ssh tunnel app not working however.
Dr.Tautology said:
So I finally had a chance to upgrade to 4.3 this week. I tested the dns proxy with proxydroid and it seems to be working fine. What rom are you using? I'm on Sacs rom and I would highly recommend it. Heres the link:
http://forum.xda-developers.com/showthread.php?t=2512983
Click to expand...
Click to collapse
I use pacman rom on nexus 4.
thank you for this tutorial!
I have been looking for a new way to setup SSH tunneling since the app "ssh tunnel" from the Google Play store stopped working with Android 4.2+
I can't wait to try this out..
I have two phones both SGS4's one running CM 10.2 and the other stock on 4.3 so i will try both of them out and report back here how it works out.
Thanks again for the tutorial!
-droidshadow
Thank you Dr.Tautology
Thank you Dr.Tautology
I was searching a big time for the solution you gave me.
First I was using SSHtunnel app from google play and it worked on my note 3 SM-N9005 (rooted) with jb 4.3. After upgrade to 4.4.2 kitkat (rooted) I could connect but there was no changing to my home ip in the browsers that I use with surfing by example to whatmyip . I also have a tablet "nexus 7" 2012 version upgraded also to 4.4.2 and on this device SSHTunnel is functional and the ip is changing??? I did not understand. Now I was searching for alternatives for my galaxy note 3 and I've found ssh connectbot and proxydroid. After I added the settings that I always used with dyn socks5 port 11723 on both programs.... -> connection to my DD-WRT router (with connectbot) was also possible. I also booted proxydroid and again after running chrome or firefox I still had the same ip so it didn't work.... Now I've found your post and read that the socks5 port must be above 49152. I changed the ports on both programs to 56001 in ('connectbot and proxydroid) and BAM! Connected with my home IP from outside my home :laugh:
The weird thing is that it worked on JB 4.3 with socks5 port 11723.
Now my woking SSH tunnel config -> Host = home-ip:7500 (default port = 22 in DDWRT)
user to connect to DD-WRT router = Root
password = Router password
dyn proxy socks5 port = 56001 as you suggest.
I have an app from my isp that I only can use with my home ip so I had to be home and connect by wifi. Now it's possible again with tunneling
Now the only thing that I have to do is thank you. :victory:
Never thought that the port number should be the problem.
Best regards DWroadrunner
I managed to set this up using SSH Tunnel for android. However I would like to use SSH Autotunnel as it's supposed to handle network changes better and is also more light weight. Does anybody know what type of private key this programm accepts? I have had no luck using putty keygen and the id_rsa I created in ubuntu does not seem to work either.
Glad to help!
DWroadrunner said:
Thank you Dr.Tautology
I was searching a big time for the solution you gave me.
First I was using SSHtunnel app from google play and it worked on my note 3 SM-N9005 (rooted) with jb 4.3. After upgrade to 4.4.2 kitkat (rooted) I could connect but there was no changing to my home ip in the browsers that I use with surfing by example to whatmyip . I also have a tablet "nexus 7" 2012 version upgraded also to 4.4.2 and on this device SSHTunnel is functional and the ip is changing??? I did not understand. Now I was searching for alternatives for my galaxy note 3 and I've found ssh connectbot and proxydroid. After I added the settings that I always used with dyn socks5 port 11723 on both programs.... -> connection to my DD-WRT router (with connectbot) was also possible. I also booted proxydroid and again after running chrome or firefox I still had the same ip so it didn't work.... Now I've found your post and read that the socks5 port must be above 49152. I changed the ports on both programs to 56001 in ('connectbot and proxydroid) and BAM! Connected with my home IP from outside my home :laugh:
The weird thing is that it worked on JB 4.3 with socks5 port 11723.
Now my woking SSH tunnel config -> Host = home-ip:7500 (default port = 22 in DDWRT)
user to connect to DD-WRT router = Root
password = Router password
dyn proxy socks5 port = 56001 as you suggest.
I have an app from my isp that I only can use with my home ip so I had to be home and connect by wifi. Now it's possible again with tunneling
Now the only thing that I have to do is thank you. :victory:
Never thought that the port number should be the problem.
Best regards DWroadrunner
Click to expand...
Click to collapse
Hey DWroadrunner,
That's great news! I'm very happy that my post helped you, as my intention was to provide all the necessary information to do this in one place. It's not always the case that a user port wont work, but unless you are big on port level security it's not easy to determine if/when the port is being used. This is probably why 11723 did work for you, however it's always better to go with a dynamic/private port range. Also, if you want a simple way to improve the security of your ssh server change the default port from 22 to something else. You'd be surprised how many attempts to connect will be made by attackers on a daily basis.
Regards,
DocTaut
droidshadow said:
I have been looking for a new way to setup SSH tunneling since the app "ssh tunnel" from the Google Play store stopped working with Android 4.2+
I can't wait to try this out..
I have two phones both SGS4's one running CM 10.2 and the other stock on 4.3 so i will try both of them out and report back here how it works out.
Thanks again for the tutorial!
-droidshadow
Click to expand...
Click to collapse
Let me know if this is working on CM. I have tested on stock 4.3 with no issues.
Any luck yet?
rintinfinn said:
I managed to set this up using SSH Tunnel for android. However I would like to use SSH Autotunnel as it's supposed to handle network changes better and is also more light weight. Does anybody know what type of private key this programm accepts? I have had no luck using putty keygen and the id_rsa I created in ubuntu does not seem to work either.
Click to expand...
Click to collapse
Hello,
I've used auto tunnel a handful of times. Just wanted to check to see if you figured out what key it accepts. I will test it out when I get a chance.
Dr.Tautology said:
Hello,
I've used auto tunnel a handful of times. Just wanted to check to see if you figured out what key it accepts. I will test it out when I get a chance.
Click to expand...
Click to collapse
Hi, the developer send me a mail saying that autotunnel should accept both private key types. None of them worked for me, though. He also suggested to try and paste the content of the private key into the bracket. I might give that a try. Edit: I can confirm copying and pasting the private key works. But it does not seem to transfer traffic via the the server, at least not the 3g traffic while using chrome. Edit 2: Turns out SSH Autotunnel does not use a socks proxy. Therefore secure browsing is not an option. The app is for secure pop3/ftp-server/smtp-server connections only. Thanks go to Matej for his kind support.
I've been using OpenVPN but I'd prefer to use ssh, as I have several ssh servers around the world, plus their pipes are bigger than my home line I have openvpn running on.
I have yet to get SSH Tunnel (apk) to work reliably; it randomly stops working and it's just a dead connection.
Using ProxyDroid unfortunately requires me to launch ConnectBot, connect ssh, then start the proxy. It'd be nice if ConnectBot could bring up the connection automatically, or ProxyDroid could do it. What I do right now is VPN unknown wifi connections and I can automate that with Tasker. I might look to see if I can automate connecting with ConnectBot then enable the ProxyDroid connection.
You can use ssh tunnels also with Drony if some proxy with authentication is involved. Works also on non rooted devices.
Automation
khaytsus said:
I've been using OpenVPN but I'd prefer to use ssh, as I have several ssh servers around the world, plus their pipes are bigger than my home line I have openvpn running on.
I have yet to get SSH Tunnel (apk) to work reliably; it randomly stops working and it's just a dead connection.
Using ProxyDroid unfortunately requires me to launch ConnectBot, connect ssh, then start the proxy. It'd be nice if ConnectBot could bring up the connection automatically, or ProxyDroid could do it. What I do right now is VPN unknown wifi connections and I can automate that with Tasker. I might look to see if I can automate connecting with ConnectBot then enable the ProxyDroid connection.
Click to expand...
Click to collapse
I think a simple bash script could be used to automate this task. I'm going to look into it; seems like an interesting/useful project.
Dr.Tautology said:
I think a simple bash script could be used to automate this task. I'm going to look into it; seems like an interesting/useful project.
Click to expand...
Click to collapse
I think so, it's just firewall settings etc.. Unfortunately for me, I need stuff that doesn't support SOCKS so I've gone back to looking into a faster OpenVPN service.
But this is good for browsing and things that use http etc.
Dr.Tautology said:
I think a simple bash script could be used to automate this task. I'm going to look into it; seems like an interesting/useful project.
Click to expand...
Click to collapse
hi have you figured out an automated script for this task via tasker, iv tried to create something but ended up no where lol.
Hi my collage wifi connection is proxy based
Whenever i surfed internet on that connection only some basic application are connected through that connection
But many 3rd party apps doses't connect by that connection like games
Any solution like connection tunnel apps or else
I don't want to root my device
Thanks
sam.jaat said:
Hi my collage wifi connection is proxy based
Whenever i surfed internet on that connection only some basic application are connected through that connection
But many 3rd party apps doses't connect by that connection like games
Any solution like connection tunnel apps or else
I don't want to root my device
Thanks
Click to expand...
Click to collapse
Do you have to login to the proxy or is it an open proxy? If it's open, you could see if you can find a OpenVPN server that listens on 80 or 443. Then use any OpenVPN client on Android and you can add/update config to match the directions here: https://openvpn.net/index.php/open-source/documentation/howto.html#http