Long story short, I can’t tunnel into port 110 from a remote site - the connection is refused. I can telnet to 110 locally but as soon as I try to come down the ssh tunnel, the wheels fall off. The firewall is off for now and POP3 works just fine locally. It’s a permissions thing, I’m sure, but what one?
The tunnel is set up with
ssh -L 11110:mailserver.foo.com:110 -l user -N mailserver.foo.com
and something as simple as
telnet localhost 11110
tanks. ssh works fine otherwise - that is, ssh -l user mailserver.foo.com gives me a terminal session on mailserver.foo.com as expected.
The problem, then, was using the remote system’s name instead of using localhost. Now to verify this works by physically leaving the net (the problem is I’m trying this from a set of machines that are on a common ethernet net - the router should be sending me out into the Internet and back but maybe not?). I’ll report back.
Yes, it looks like the POP server wasn’t listening on the FQDN IP address, perhaps it resolved to the external IP address at the other end or something like that.
The frustrating thing is I could see the attempts showing up at the server and being rejected. Using tail -f /var/log/messages, the attempts to use port 110 were reported along with the error messages.
I have, however, successfully retrieved mail from the server, so I know the tunnel works. At least here at home. Tomorrow I’ll try it from the road…
Thanks. I’ll look into that. The local net here has been in place for a while and there’s a lot of cruft that needs to be weeded out, including the business with POP.
As an aside, while watching /var/log/messages during testing, I happened to see:
Mar 15 23:20:20 wxsat sshd[18904]: Invalid user test from 121.184.76.83
Mar 15 23:20:24 wxsat sshd[18908]: Invalid user webmaster from 121.184.76.83
Mar 15 23:20:28 wxsat sshd[18912]: Invalid user oracle from 121.184.76.83
Mar 15 23:20:30 wxsat sshd[18914]: Invalid user library from 121.184.76.83
Mar 15 23:20:31 wxsat sshd[18916]: Invalid user info from 121.184.76.83
Mar 15 23:20:33 wxsat sshd[18918]: Invalid user shell from 121.184.76.83
Mar 15 23:20:35 wxsat sshd[18920]: Invalid user linux from 121.184.76.83
Mar 15 23:20:37 wxsat sshd[18922]: Invalid user unix from 121.184.76.83
Mar 15 23:20:39 wxsat sshd[18924]: Invalid user webadmin from 121.184.76.83
Mar 15 23:20:43 wxsat sshd[18928]: Invalid user test from 121.184.76.83
Mar 15 23:20:51 wxsat sshd[18936]: Invalid user master from 121.184.76.83
Mar 15 23:21:19 wxsat sshd[18968]: Invalid user test from 121.184.76.83
Mar 15 23:21:21 wxsat sshd[18970]: Invalid user test from 121.184.76.83
Mar 15 23:21:23 wxsat sshd[18972]: Invalid user webmaster from 121.184.76.83
Mar 15 23:21:25 wxsat sshd[18974]: Invalid user user from 121.184.76.83
Mar 15 23:21:27 wxsat sshd[18976]: Invalid user username from 121.184.76.83
Mar 15 23:21:29 wxsat sshd[18978]: Invalid user username from 121.184.76.83
Mar 15 23:21:31 wxsat sshd[18980]: Invalid user user from 121.184.76.83
Mar 15 23:21:37 wxsat sshd[18986]: Invalid user test from 121.184.76.83
Mar 15 23:21:46 wxsat sshd[18997]: Invalid user danny from 121.184.76.83
Mar 15 23:21:48 wxsat sshd[18999]: Invalid user sharon from 121.184.76.83
Mar 15 23:21:50 wxsat sshd[19001]: Invalid user aron from 121.184.76.83
…]
Said idiot at least did me the favor of reminding me to adjust ssh to minimize break in attempts. Aren’t script kiddies fun? >:)
