Accessibility Resource Center
Skip to main content
Shop
Shop
-
Shop all
- Deals Deals
- Devices Devices
-
Accessories
Accessories
Accessories
- Shop all accessories
-
Phone accessories
Phone accessories
Phone accessories
-
Tablet accessories
Tablet accessories
Tablet accessories
-
Watch accessories
Watch accessories
Watch accessories
- Charging
- Audio
- Gaming
- Smart home
- Deals
-
Plans
Plans
Plans
- Shop all plans
- Unlimited
- International services
- Connected devices
-
Those who serve
Those who serve
Those who serve
- Student plans
-
Other plans
Other plans
Other plans
- Bring your own device
- Home Home
- Prepaid Prepaid
-
+play
-
+play
- Entertainment Entertainment
-
Apps & add-ons
Apps & add-ons
Apps & add-ons
-
Business
Why Verizon
Support
Support
Choose your cart
Choose your cart
Have a phone you love? Get up to $500 when you bring your phone. OR get iPhone 13, on us for a limited time. With Select 5G Unlimited plans. Buy now
Receive up to $504 promo credit ($180 w/Welcome Unlimited, $360 w/ 5G Start, or $504 w/5G Do More, 5G Play More, 5G Get More or One Unlimited for iPhone plan (Welcome Unlimited and One Unlimited for iPhone plans can't be mixed w/other Unlimited plans; all lines on the account req'd on respective plans)) when you add a new smartphone line with your own 4G/5G smartphone on an eligible postpaid plan between 2/10/23 and 4/5/23. Promo credit applied over 36 months; promo credits end if eligibility requirements are no longer met.
$699.99 (128 GB only) device payment purchase or full retail purchase w/ new smartphone line on One Unlimited for iPhone (all lines on account req'd on plan), 5G Start, 5G Do More, 5G Play More or 5G Get More plan req'd. Less $699.99 promo credit applied over 36 mos.; promo credit ends if eligibility req’s are no longer met; 0% APR.
end of navigation menu
Sign in
- Verizon Community
- Categories
- Home
- Products
- Home Internet (Fios and High Speed)
- Fios G3100 - Port Forward from specific external I...
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for
1,691 Members online 255K Discussions 42.3K Solutions
More Options
- Subscribe to RSS Feed
- Mark Topic as New
- Mark Topic as Read
- Float this Topic for Current User
- Bookmark
- Subscribe
- Printer Friendly Page
Correct answers are available for this post.
Jump to solution.
- Mark as New
- Bookmark
- Subscribe
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
I'm trying to open SSH port 22 on the router to forward to a specific host on my internal network.
And, I'd like to restrict external access to a specific IP address.
So far, I've created a port forwarding rule for the internal host on port 22. But can't figure out how to limit incoming access to a single IP address.
Also, the port forwarding isn't working -- can't connect via ssh from external host.
Can connect if I set the local host as DMZ.
Can you walk me thru the steps to accomplish this?
Thanks in advance.
Solved! Go to Correct Answer
1 Solution
Correct answers
Correct answers are available for this post.
Jump to solution.
- Mark as New
- Bookmark
- Subscribe
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
Port forwarding is always forwarding the port to a specific internal host unless you are forwarding to a network object containing multiple hosts.
To better assist you, can you provide the screenshot of your port forwarding rule? Thanks.
Since G3100 itself uses port 22 for its own SSH, I don't think you can disable it through the GUI. TR-069 at Verizon's backend may achieve this, but that's available only to engineering team I think (engineering team is not accessible to customers).
The easiest solution would be forward from a different external port and, when accessing the SSH remotely, specify a different port to connect.
5 Replies
Correct answers are available for this post.
Jump to solution.
- Mark as New
- Bookmark
- Subscribe
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
Port forwarding is always forwarding the port to a specific internal host unless you are forwarding to a network object containing multiple hosts.
To better assist you, can you provide the screenshot of your port forwarding rule? Thanks.
Since G3100 itself uses port 22 for its own SSH, I don't think you can disable it through the GUI. TR-069 at Verizon's backend may achieve this, but that's available only to engineering team I think (engineering team is not accessible to customers).
The easiest solution would be forward from a different external port and, when accessing the SSH remotely, specify a different port to connect.
Correct answers are available for this post.
Jump to solution.
Re: Fios G3100 - Port Forward from specific external IP -> specific internal IP
- Mark as New
- Bookmark
- Subscribe
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
Changing the ssh port did the trick.
Thanks 👌
Correct answers are available for this post.
Jump to solution.
Re: Fios G3100 - Port Forward from specific external IP -> specific internal IP
- Mark as New
- Bookmark
- Subscribe
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
But...2nd part of my question:
Is it possible to limit an internal port service to a single external IP🤔?
Correct answers are available for this post.
Jump to solution.
Re: Fios G3100 - Port Forward from specific external IP -> specific internal IP
- Mark as New
- Bookmark
- Subscribe
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
Yes, if you have business service and bought more than one static IP address.
No, if you have residential service.
Correct answers are available for this post.
Jump to solution.
Re: Fios G3100 - Port Forward from specific external IP -> specific internal IP
- Mark as New
- Bookmark
- Subscribe
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
@Cang_Household wrote:
Yes, if you have business service and bought more than one static IP address.
No, if you have residential service.
I believe that they meant, IP Address source
As an example my Linksys E4200 hardware version one running tomato third party firmware has this option in the forwarding page.
Src Address (optional) - Forward only if from this address. Ex: "1.2.3.4", "1.2.3.4 - 2.3.4.5", "1.2.3.0/24", "me.example.com".
Ext Ports - The ports to be forwarded, as seen from the WAN. Ex: "2345", "200,300", "200-300,400".
Int Port (optional) - The destination port inside the LAN. If blank, the destination port is the same as Ext Ports. Only one port per entry is supported when forwarding to a different internal port.
Int Address - The destination address inside the LAN.
I am not sure if their NAT router supports this or not.
Follow Verizon
Follow Verizon Fios