nat – Attempt to run a local server with port forwarding behind a carrier-grade network from the ISP, but no connection to localhost is established

I am trying to create a half life server by port forwarding through my router. It didn't work, I checked it out, and my public IP and my WAN IP were different. Then I realized I was in a carrier-grade network. I called the ISP and asked them if there was a way to do this without having to route to my router, and they said the guy is doing my router as a DMZ host. That was what I needed, requests to my public IP on any port were forwarded and forwarded to my router, and then my router only forwarded the port I was interested in, port 27015, UDP port of the half- Life server standards.

But it didn't work, I made sure that my localhost had a static IP and configured the DHCP to reserve one for me, created firewall rules to allow traffic on the 27015 port, and that I had all the correct ones I used IP addresses for my localhost, my default gateway, my pale address and my public address.

Me and the ISP guy chatted again and we decided the port was somehow closed. I quickly set up a Filezilla server (I forwarded 27015 as a listening port and a range of 11000-12000 to transfer files, both in the router and firewall rule) and asked if he wanted my home- List of my public IP and my port 27015. It worked, so everything was fine, checked with Wireshark.

Now I'm in a situation where I want this to work, but I'm not sure what's going on. The ISP type doesn't help much, and I think either the DMZ it set up doesn't allow UDP packets because filezilla uses TCP and Half-Life server uses UDP, or there is a firewall on the ISP router that UDP packets blocked or fetching this port 27015. This is not a general service.

I'm new to networking, I try to set this up as a challenge, I've learned a lot and read how to do things. Please do not hesitate to point out errors and suggest solutions. If I can't make it, I'll probably try to use ngrok to make the game server work.

SSH agent forwarding with GPG's SSH agent support on MacOS Catalina

When trying to convert a working setup from my Linux computer to MacOS, I am not trying to enable SSH agent support in GPG.

What I did:

  • Set up gnupg and pinentry-mac, as well as gpg-suite Barrel over homebrew
  • my ~/.gnupg/gpg-agent.conf contains both enable-ssh-support and pinentry-program /usr/local/bin/pinentry-mac
  • my ~/.zshrc contains
gpgconf --launch gpg-agent
export SSH_AUTH_SOCK=$(gpgconf --list-dirs agent-ssh-socket)

To run ssh-add -L shows both my GPG and my SSH key and everything looks good. However, when trying to use SSH agent forwarding connection, the following error occurs:

sign_and_send_pubkey: Signing failed: agent refused operation

I suspect it has something to do with pinentry and trying to access the private key (the ssh-add does not need). But call pinentry seems to work. I tried it first without pinentry-mac and I tried it too gpg-connect-agent updatestartuptty but I can't seem to get this to work.

Any ideas?

HTML Unit does not work through proxy forwarding

I have deployed a GWT web application for Tomcat and everything is working fine.
If I try to link my purchased domain to the server via proxy forwarding, an error message is displayed and the following error message is displayed:

11-Mar-2020 18:59:51.635 INFO (Timer-3) org.apache.catalina.loader.WebappClassLoaderBase.checkStateForResourceLoading Illegal access: this web application instance has been stopped already. Could not load (com.gargoylesoftware.htmlunit.javascript.host.Window$1). The following stack trace is thrown for debugging purposes as well as to attempt to terminate the thread which caused the illegal access.
    java.lang.IllegalStateException: Illegal access: this web application instance has been stopped already. Could not load (com.gargoylesoftware.htmlunit.javascript.host.Window$1). The following stack trace is thrown for debugging purposes as well as to attempt to terminate the thread which caused the illegal access.
            at org.apache.catalina.loader.WebappClassLoaderBase.checkStateForResourceLoading(WebappClassLoaderBase.java:1385)
            at org.apache.catalina.loader.WebappClassLoaderBase.checkStateForClassLoading(WebappClassLoaderBase.java:1373)
            at org.apache.catalina.loader.WebappClassLoaderBase.loadClass(WebappClassLoaderBase.java:1226)
            at org.apache.catalina.loader.WebappClassLoaderBase.loadClass(WebappClassLoaderBase.java:1188)
            at com.gargoylesoftware.htmlunit.javascript.host.Window$Filter.(Window.java:2001)
            at com.gargoylesoftware.htmlunit.javascript.host.Window.getElementsByName(Window.java:1627)
            at com.gargoylesoftware.htmlunit.javascript.host.Window.getWithFallback(Window.java:1562)

The error is displayed on this line:

final HtmlPage pageThree = (HtmlPage) button.click();

In this line I get a new page after simulating a click on the "Submit" button of a form.

Does anyone have any idea why this is coming? Or why is this only a problem if I access the web app via a proxy server and not if I access it directly?

Thank you in advance!

Network – How can PP2P be made available without router port forwarding (with ngrok?)

My main goal is to create and make a PP2P VPN server available without performing port forwarding on the router.

I used this guide to create a normal PP2P VPN server on Windows and now I can connect to the server locally.
The problem is that I don't have access to the router, so I can't make it available by changing the router settings.

How can I expose my PP2P VPN server to the internet?

What I tried:
Exposed local port 1723 with ngrok

ngrok tcp 1723

And tried to connect to the URL (generated by ngrok) with this manual.
But it did not work.
I also wonder if it would help to expose port 43 or not (if so, I should buy ngrok).

Please help.

checkoutsession – Magento 1.9 forwarding at checkout / in the shopping cart after online payment

I applied the latest security patches from the Magento website and after that I have a strange behavior:

After an order with online payment has been completed, the payment (card) is forwarded to Checkout / shopping cart about public function successAction () of app code core Mage Checkout controller OnepageController.php

This means that after the page is redirected to the payment website and then returned to our website, the session is somehow lost.

$ session-> getLastSuccessQuoteId () returns NULL and does so for that reason.

I even checked

$lastQuoteId = $session->getLastQuoteId();

$lastOrderId = $session->getLastOrderId();

$lastRecurringProfiles = $session->getLastRecurringProfileIds();

and these are also zero. I also looked at the DB and the quote is there and everything seems to be in order.

Can somebody help me with it?

SSH forwarding from my laptop to a VM on a remote server

I have a remote server that hosts a VM that is running a web service on port 8000.

I want to be able to access the web service from a web browser on my laptop and I know that:

  1. I can access the remote server via SSH from my laptop
  2. From the server I can connect to the VM via SSH
  3. The web service cannot be accessed directly from the server.
  4. Laptop and server keys are different.

If the web service were running directly on the server, I would do the following:

ssh -L 8000:localhost:8000 user@server

What forwards everything I do on localhost: 8000 via SSH to the remote service.
How do I do something similar in the case of the VM?

Proxy – How do I add authentication to SSH port forwarding?

So I have one remote server who can access the internet that I cannot access in my country. I've also another server at my home. I want to create one HTTP proxy instead of a VPN so I can connect to the remote server on any device without installing applications. My country too blocks VPN connections. So here is what I did:

  1. create an ssh Port forwarding in my local server::

ssh -4 -o StrictHostKeyChecking=no -fqTnND [PORT] [USER]:[HOST]

  1. To install privoxy on the local server. Convert SOCKET5 in HTTP.

systemctl start privoxy

  1. I can connect to mine HTTP Proxy anywhere and in almost any device. Just enter [DOMAIN] and [PORT]and i am ready to go.

But here's the problem: Someone can do the same as above. i could use iptables to restrict the port that should only be connected in a local network. However, this would make it difficult to use the proxy outside.

Fortunately, privoxy support proxy-authentication-forwarding. So if I can Add user authentication to SSH port forwarding. Then everything is cool.

How can i do it Or is there a better way to achieve my purpose?

Mobile application – Are there patterns for forwarding an image to an email in the app?

I'm working on an app where one of the final steps in the sign-up process requires users to provide their employer with on-screen information. You can either go to their email and forward the data that we have sent them, or they can scan the same data in the app and make it available to their employer.

I want to know if anyone knows of an existing pattern that users can use to send this information to their employer via email or message directly in the app without having to switch to their email or take a screenshot.

Thanks a lot!

Linux – Change the default forwarding policy (VPN / NAT) to be accepted

While reading a tutorial from a very popular hosting provider, I came across something that doesn't seem intuitive. It shows people how to install their own Debian-based OpenVPN server. In particular, the default forwarding policy is changed from "DROP" to "ACCEPT" so that traffic can be forwarded correctly. There seem to be no additional rules anywhere that would restrict routing beyond this standard policy.

If I understand correctly, it can result in someone using the computer as a gateway to the VPN and possibly letting unwanted traffic through. The logic here is that the operating system, without rules that prevent packet forwarding, simply forwards all traffic that is not intended for itself. For example, someone could create a static route for the external IP assuming a network of 10.8.0.0/24. NAT would normally act as a firewall, but in this case I can only assume that it will rewrite the IP of response packets at best.

This is the tutorial for reference: How to set up an OpenVPN server on Debian 9

I just want to know if my concerns are justified or if I am missing something.

Forwarding services in Mumbai

The freight forwarder plays a crucial role in the operation of the import and export business and cannot do his international business without the help of the freight forwarder. Exporters and importers in Mumbai and the West Indies need an intelligent forwarder in Mumbai to ensure the smooth running of their international business. MNCs need assistance from the courier company to send documents and goods.
Tripath Logistics is very popular for international quality …

Forwarding services in Mumbai