SSH server can't be connected to when VPN is turned on

ssh vpn gateway routing
29,322

Solution 1

When you use a vpn generally the vpn network takes over your entire interface such that you are only routable from somewhere on the vpn network not the internet at large. Most people solve this problem by running a vm (virtualbox etc) and connecting to the vpn in that virtual machine so that it doesn't completely hose the main connection on the actual machine.

Solution 2

Before adventuring through the network setups, check if the ssh server in question listens on the vpn interface. Maybe it is bound to a specific interface on your server.

Example netstat -a output: 

 Proto Recv-Q Send-Q Local Address    Foreign Address   State      
 tcp        0      0 *:ssh            *:*               LISTEN

The ssh server in this example listens on all interfaces (indicated by the asterisk in *:ssh. If on your system there is a host address instead, the ssh server is bound to specific interfaces.

Edit /etc/ssh/sshd_config and set ListenAddress 0.0.0.0 to adjust this, if neccessary.

If sshd already listens to the correct interfaces, feel free to enter the routing dungeon :-)

Share:
29,322

Related videos on Youtube

dharmaraju
Author by

dharmaraju

Updated on September 18, 2022

Comments

  • dharmaraju
    dharmaraju almost 2 years

    I recently found that when my workstation connects through a VPN connection then its SSH server can't be connected to from a remote site. I am sure it's a routing problem because the the VPN client changes the default gateway to its peer (VPN server) of the ppp connection.

    Is there a solution to make SSH server and VPN client both happy?

  • Christopher Pecoraro
    Christopher Pecoraro over 12 years
    You can do some routing tricks to route data from the vpn one way and other data the other way (different gateways etc) but it's really just a lot easier to use virtualbox. :-)
  • dharmaraju
    dharmaraju over 12 years
    Thanks for the suggestion! I'd like to know what routing trick can achieve this.
  • Psychonaut
    Psychonaut almost 9 years
    To what address should ListenAddress be set? The IP of the server on the local interface? The IP of the router? Something else?
  • Jamie Hutber
    Jamie Hutber about 6 years
    I'm using VM stu, but what I'm not able to do is get assess the VPN in the host, as I need to do dev work.
  • Christopher Pecoraro
    Christopher Pecoraro about 6 years
    oh, I was suggesting the other way. Use the vpn solely in the vm and that leaves the reak machine for open and free internet.

Recents

Why Is PNG file with Drop Shadow in Flutter Web App Grainy?
How to troubleshoot crashes detected by Google Play Store for Flutter app
Cupertino DateTime picker interfering with scroll behaviour
Why does awk -F work for most letters, but not for the letter "t"?
Flutter change focus color and icon color but not works
How to print and connect to printer using flutter desktop via usb?
Critical issues have been reported with the following SDK versions: com.google.android.gms:play-services-safetynet:17.0.0
Flutter Dart - get localized country name from country code
navigatorState is null when using pushNamed Navigation onGenerateRoutes of GetMaterialPage
Android Sdk manager not found- Flutter doctor error
Flutter Laravel Push Notification without using any third party like(firebase,onesignal..etc)
How to change the color of ElevatedButton when entering text in TextField

Related

ssh will sporadically hang temporarily on fast connection
How to prevent Windows 7 using VPN gateway by default?
How can I route *some* traffic over an SSH SOCKS proxy on OS X?
Specifying Gateway for VPN Connection
Force SSH connection through a different interface
Prevent SSH connection lost after logging into VPN on server machine
Route only ssh traffic through VPN
Use ssh with a specific network interface
SSH, Connection established, but stuck
ssh fails because port 22 doesn't work with AT&T Uverse