Unable to Access LAN Ports with Local Bridge

Post your questions about SoftEther VPN software here. Please answer questions if you can afford.
Post Reply
IsThisRight
Posts: 5
Joined: Sat Dec 24, 2022 5:21 pm

Unable to Access LAN Ports with Local Bridge

Post by IsThisRight » Sat Dec 24, 2022 8:26 pm

Hi all,

When my client successfully connects to my virtual hub, which is connected to my LAN via local bridge (where my network card is my LAN adaptor) - see https://www.softether.org/4-docs/1-manu ... al_Bridges, I'm able to resolve anything running on my LAN via the LAN IP address without a problem (for example: 192.168.x.x), but anything running on my LAN that uses a port doesn't resolve (for example: 192.168.x.x:xxxx), which would otherwise resolve with no problem when I'm just connected to the LAN via wifi only (without the VPN).

I'm using:
  • SoftEther VPN 4.0 (Ver 4.38. Build 9760)
  • Port: 443
  • Windows 10
Access List is empty - my understanding is that I could add a rule to filter to exclude access, such as ports, but as it's blank so it shouldn't be filtering anything

Not sure if this helps, but here's a log specific to the bridge

Code: Select all

2022-12-24 12:36:41.446 [HUB "VPN"] Session "SID-LOCALBRIDGE-1": The DHCP server of host "xx-xx-xx-xx-xx-xx" (192.168.2.1) on this session allocated, for host "SID-JIMCERT-44" on another session "xx-xx-xx-xx-xx-xx", the new IP address 192.168.2.13.
Please let me know if there's more information I can provide that might be able to help

solo
Posts: 1228
Joined: Sun Feb 14, 2021 10:31 am

Re: Unable to Access LAN Ports with Local Bridge

Post by solo » Mon Dec 26, 2022 12:11 am

Hi, disable ALL firewalls/IDS/AV/etc, make a VPN connection and post, as code, the output of:

Code: Select all

VPN server:
netstat -r
ipconfig /all

VPN client:
netstat -r
ipconfig /all
telnet 192.168.2.1 80 [if in terminal, type "GET /" and press 2x Enter]

IsThisRight
Posts: 5
Joined: Sat Dec 24, 2022 5:21 pm

Re: Unable to Access LAN Ports with Local Bridge

Post by IsThisRight » Mon Dec 26, 2022 4:00 pm

Hello solo, thank you so much for responding to my post! Here is the information you asked for. As you can derive, I have a Hyper-V virtual machine also running on my server which is why you see Hyper-V in my interface list.

SERVER

Code: Select all

C:\Users\MediaPC>netstat -r
===========================================================================
Interface List
  3...2c ca 7c 01 a4 9a ......Hyper-V Virtual Ethernet Adapter #2
  1...........................Software Loopback Interface 1
 19...00 15 5d 05 77 b9 ......Hyper-V Virtual Ethernet Adapter
===========================================================================

IPv4 Route Table
===========================================================================
Active Routes:
Network Destination        Netmask          Gateway       Interface  Metric
          0.0.0.0          0.0.0.0      192.168.2.1      192.168.2.5    281
        127.0.0.0        255.0.0.0         On-link         127.0.0.1    331
        127.0.0.1  255.255.255.255         On-link         127.0.0.1    331
  127.255.255.255  255.255.255.255         On-link         127.0.0.1    331
      172.23.80.0    255.255.240.0         On-link       172.23.80.1   5256
      172.23.80.1  255.255.255.255         On-link       172.23.80.1   5256
    172.23.95.255  255.255.255.255         On-link       172.23.80.1   5256
      192.168.2.0    255.255.255.0         On-link       192.168.2.5    281
      192.168.2.5  255.255.255.255         On-link       192.168.2.5    281
    192.168.2.255  255.255.255.255         On-link       192.168.2.5    281
        224.0.0.0        240.0.0.0         On-link         127.0.0.1    331
        224.0.0.0        240.0.0.0         On-link       192.168.2.5    281
        224.0.0.0        240.0.0.0         On-link       172.23.80.1   5256
  255.255.255.255  255.255.255.255         On-link         127.0.0.1    331
  255.255.255.255  255.255.255.255         On-link       192.168.2.5    281
  255.255.255.255  255.255.255.255         On-link       172.23.80.1   5256
===========================================================================
Persistent Routes:
  Network Address          Netmask  Gateway Address  Metric
          0.0.0.0          0.0.0.0      192.168.2.1  Default
===========================================================================

IPv6 Route Table
===========================================================================
Active Routes:
 If Metric Network Destination      Gateway
  1    331 ::1/128                  On-link
  3    281 fe80::/64                On-link
 19   5256 fe80::/64                On-link
 19   5256 fe80::4d2d:62be:5615:5f90/128
                                    On-link
  3    281 fe80::93a0:1439:e4d0:24d9/128
                                    On-link
  1    331 ff00::/8                 On-link
  3    281 ff00::/8                 On-link
 19   5256 ff00::/8                 On-link
===========================================================================
Persistent Routes:
  None

C:\Users\MediaPC>ipconfig /all

Windows IP Configuration

   Host Name . . . . . . . . . . . . : DESKTOP-U8UGFU7
   Primary Dns Suffix  . . . . . . . :
   Node Type . . . . . . . . . . . . : Hybrid
   IP Routing Enabled. . . . . . . . : No
   WINS Proxy Enabled. . . . . . . . : No

Ethernet adapter vEthernet (Windows 10 Virtual Switch):

   Connection-specific DNS Suffix  . :
   Description . . . . . . . . . . . : Hyper-V Virtual Ethernet Adapter #2
   Physical Address. . . . . . . . . : 2C-CA-7C-01-A4-9A
   DHCP Enabled. . . . . . . . . . . : No
   Autoconfiguration Enabled . . . . : Yes
   Link-local IPv6 Address . . . . . : fe80::93a0:1439:e4d0:24d9%3(Preferred)
   IPv4 Address. . . . . . . . . . . : 192.168.2.5(Preferred)
   Subnet Mask . . . . . . . . . . . : 255.255.255.0
   Default Gateway . . . . . . . . . : 192.168.2.1
   DHCPv6 IAID . . . . . . . . . . . : 368619862
   DHCPv6 Client DUID. . . . . . . . : 00-01-00-01-25-F5-CA-3C-F8-B1-56-CD-C7-C6
   DNS Servers . . . . . . . . . . . : 8.8.8.8
                                       8.8.4.4
   NetBIOS over Tcpip. . . . . . . . : Enabled

Ethernet adapter vEthernet (Default Switch):

   Connection-specific DNS Suffix  . :
   Description . . . . . . . . . . . : Hyper-V Virtual Ethernet Adapter
   Physical Address. . . . . . . . . : 00-15-5D-05-77-B9
   DHCP Enabled. . . . . . . . . . . : No
   Autoconfiguration Enabled . . . . : Yes
   Link-local IPv6 Address . . . . . : fe80::4d2d:62be:5615:5f90%19(Preferred)
   IPv4 Address. . . . . . . . . . . : 172.23.80.1(Preferred)
   Subnet Mask . . . . . . . . . . . : 255.255.240.0
   Default Gateway . . . . . . . . . :
   DHCPv6 IAID . . . . . . . . . . . : 318772573
   DHCPv6 Client DUID. . . . . . . . : 00-01-00-01-25-F5-CA-3C-F8-B1-56-CD-C7-C6
   DNS Servers . . . . . . . . . . . : fec0:0:0:ffff::1%1
                                       fec0:0:0:ffff::2%1
                                       fec0:0:0:ffff::3%1
   NetBIOS over Tcpip. . . . . . . . : Enabled
CLIENT

Code: Select all

Microsoft Windows [Version 10.0.19045.2364]
(c) Microsoft Corporation. All rights reserved.

C:\WINDOWS\system32>netstat -r
===========================================================================
Interface List
 36...5e fd 93 04 02 2c ......VPN Client Adapter - VPN
 12...00 ff 89 8f 77 73 ......TAP-Windows Adapter V9
 18...00 23 14 27 22 bc ......Intel(R) Centrino(R) Advanced-N 6200 AGN
  1...........................Software Loopback Interface 1
===========================================================================

IPv4 Route Table
===========================================================================
Active Routes:
Network Destination        Netmask          Gateway       Interface  Metric
          0.0.0.0          0.0.0.0      192.168.2.1     192.168.2.52      2
   108.20.128.221  255.255.255.255  192.168.209.223   192.168.209.60     40
        127.0.0.0        255.0.0.0         On-link         127.0.0.1    331
        127.0.0.1  255.255.255.255         On-link         127.0.0.1    331
  127.255.255.255  255.255.255.255         On-link         127.0.0.1    331
      192.168.2.0    255.255.255.0         On-link      192.168.2.52    257
     192.168.2.52  255.255.255.255         On-link      192.168.2.52    257
    192.168.2.255  255.255.255.255         On-link      192.168.2.52    257
    192.168.209.0    255.255.255.0         On-link    192.168.209.60    296
   192.168.209.60  255.255.255.255         On-link    192.168.209.60    296
  192.168.209.255  255.255.255.255         On-link    192.168.209.60    296
        224.0.0.0        240.0.0.0         On-link         127.0.0.1    331
        224.0.0.0        240.0.0.0         On-link    192.168.209.60    296
        224.0.0.0        240.0.0.0         On-link      192.168.2.52    257
  255.255.255.255  255.255.255.255         On-link         127.0.0.1    331
  255.255.255.255  255.255.255.255         On-link    192.168.209.60    296
  255.255.255.255  255.255.255.255         On-link      192.168.2.52    257
===========================================================================
Persistent Routes:
  None

IPv6 Route Table
===========================================================================
Active Routes:
 If Metric Network Destination      Gateway
  1    331 ::1/128                  On-link
 36    291 fe80::/64                On-link
 36    291 fe80::7d05:43a4:7082:d3ed/128
                                    On-link
  1    331 ff00::/8                 On-link
 36    291 ff00::/8                 On-link
===========================================================================
Persistent Routes:
  None
---
C:\WINDOWS\system32>ipconfig /all

Windows IP Configuration

   Host Name . . . . . . . . . . . . : HPLaptop
   Primary Dns Suffix  . . . . . . . :
   Node Type . . . . . . . . . . . . : Hybrid
   IP Routing Enabled. . . . . . . . : No
   WINS Proxy Enabled. . . . . . . . : No

Unknown adapter VPN - VPN Client:

   Connection-specific DNS Suffix  . :
   Description . . . . . . . . . . . : VPN Client Adapter - VPN
   Physical Address. . . . . . . . . : 5E-FD-93-04-02-2C
   DHCP Enabled. . . . . . . . . . . : Yes
   Autoconfiguration Enabled . . . . : Yes
   Link-local IPv6 Address . . . . . : fe80::7d05:43a4:7082:d3ed%36(Preferred)
   IPv4 Address. . . . . . . . . . . : 192.168.2.52(Preferred)
   Subnet Mask . . . . . . . . . . . : 255.255.255.0
   Lease Obtained. . . . . . . . . . : Monday, December 26, 2022 10:23:45 AM
   Lease Expires . . . . . . . . . . : Monday, December 26, 2022 10:43:44 AM
   Default Gateway . . . . . . . . . : 192.168.2.1
   DHCP Server . . . . . . . . . . . : 192.168.2.1
   DHCPv6 IAID . . . . . . . . . . . : 610205075
   DHCPv6 Client DUID. . . . . . . . : 00-01-00-01-1C-1F-BC-64-C8-0A-A9-24-1F-40
   DNS Servers . . . . . . . . . . . : 192.168.2.1
                                       71.243.0.12
                                       71.250.0.12
   NetBIOS over Tcpip. . . . . . . . : Enabled

Ethernet adapter Ethernet:

   Media State . . . . . . . . . . . : Media disconnected
   Connection-specific DNS Suffix  . :
   Description . . . . . . . . . . . : TAP-Windows Adapter V9
   Physical Address. . . . . . . . . : 00-FF-89-8F-77-73
   DHCP Enabled. . . . . . . . . . . : Yes
   Autoconfiguration Enabled . . . . : Yes

Wireless LAN adapter Wi-Fi:

   Connection-specific DNS Suffix  . :
   Description . . . . . . . . . . . : Intel(R) Centrino(R) Advanced-N 6200 AGN
   Physical Address. . . . . . . . . : 00-23-14-27-22-BC
   DHCP Enabled. . . . . . . . . . . : Yes
   Autoconfiguration Enabled . . . . : Yes
   IPv4 Address. . . . . . . . . . . : 192.168.209.60(Preferred)
   Subnet Mask . . . . . . . . . . . : 255.255.255.0
   Lease Obtained. . . . . . . . . . : Monday, December 26, 2022 10:10:12 AM
   Lease Expires . . . . . . . . . . : Monday, December 26, 2022 11:22:20 AM
   Default Gateway . . . . . . . . . :
   DHCP Server . . . . . . . . . . . : 192.168.209.223
   DNS Servers . . . . . . . . . . . : 192.168.209.223
   NetBIOS over Tcpip. . . . . . . . : Enabled
Note, after entering telnet 192.168.2.1 80, I had no curser, but I typed "GET /" and hit enter once to get the following html, ending in "Connection to host lost."

Code: Select all

<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Transitional//EN" "http://www.w3.org/TR/xhtml1/DTD/xhtml1-transitional.dtd">
<html xmlns="http://www.w3.org/1999/xhtml">
<head>
<meta http-equiv="Content-Type" content="text/html; charset=utf-8" />
<link rel="icon" href="/favicon.png"/>
<title>RouterOS router configuration page</title>
<style type="text/css">
body {
font-family: Verdana, Geneva, sans-serif;
font-size: 11px;
}
img {border: none}
img:hover {opacity: 0.8;}
h1 {
font-size: 1.7em;
display: inline;
margin-bottom: 10px;
}
fieldset {
margin-top: 20px;
background: #fff;
padding: 20px;
border: 1px solid #c1c1c1;
}
#container {
width: 70%;
margin: 10% auto;
}
#box {
background-color: #fff;
-moz-border-radius: 7px;
-webkit-border-radius: 7px;
border: 1px solid #c1c1c1;
padding: 30px;
filter: progid:DXImageTransform.Microsoft.gradient(startColorstr='#ffffff', endColorstr='#f3f3f3'); /* for IE */
background: -webkit-gradient(linear, left top, left bottom, from(#fff), to(#f3f3f3)); /* for webkit browsers */
background: -moz-linear-gradient(top,  #fff,  #f3f3f3); /* for firefox 3.6+ */
}
.floater {float: left; margin-right: 10px;}
.floater label {display: block; text-align: center;}

#login {
    margin: 2em 0 4em 0;
}
#login h2 {
    font-weight: normal;
    font-size: 14px;
    margin: 0 0 0.5em 1em;
}
#login td {
    padding: 0 4px 0 0;
}
#login td.label {
    text-align: right;
}
#login td.toolbar {
    padding: 0 0 0 1em;
    vertical-align: top;
}
#login ul.toolbar {
    margin: 0;
}
#login input {
    margin: 2px;
    padding: 2px;
    border: 1px solid #888;
    box-shadow: 1px 1px 3px rgba(0,0,0,0.3);
    -webkit-box-shadow: 1px 1px 3px rgba(0,0,0,0.3);
    -moz-box-shadow: 1px 1px 3px rgba(0,0,0,0.3);
}
#error {
    display:none;
    color:red;
    padding: 1em 0 0 0;
}
ul.toolbar {
    font-size: 11px;
    text-align: left;
    list-style-type: none;
    padding: 0;
    margin: 2px 0 4px 2px;
}
ul.toolbar li {
    float: left;
    vertical-align: middle;
}
ul.toolbar a {
    float: none;
    display: block;
    margin: 2px 4px 2px 0;
    padding: 5px;

    background: #ddd;
    border: 1px solid #888;
    border-radius: 3px;
    -moz-border-radius: 3px;
    box-shadow:
        1px 1px 2px rgba(255,255,255,0.8) inset,
        0 10px 10px -5px rgba(255,255,255,0.5) inset, /* top gradient */
        1px 1px 2px rgba(0,0,0,0.2); /* shadow */
    -webkit-box-shadow:
        1px 1px 2px rgba(255,255,255,0.8) inset,
        0 10px 10px -5px rgba(255,255,255,0.5) inset,
        1px 1px 2px rgba(0,0,0,0.2);
    -moz-box-shadow:
        1px 1px 2px rgba(255,255,255,0.8) inset,
        0 10px 10px -5px rgba(255,255,255,0.5) inset,
        1px 1px 2px rgba(0,0,0,0.2);
    color: #000;

    text-decoration: none;
    text-align: center;
    white-space: nowrap;
    cursor: inherit;
    min-width: 4em;

    -webkit-transition: background 0.2s linear, box-shadow 0.2s ease-out;
    -moz-transition: background 0.2s linear, box-shadow 0.2s ease-out;
}
ul.toolbar a:hover {
    background: #eee;
}
ul.toolbar a:active {
    background: #aaa;
    box-shadow: 1px 1px 2px #999 inset;
    -webkit-box-shadow: 1px 1px 2px #999 inset;
    -moz-box-shadow: 1px 1px 2px #999 inset;
}
</style>
<script>
function get(id) {
    return document.getElementById(id);
}
function trim(str) {
    return str.replace(/^\s+|\s+$/g, '');
}
function login(user, pwd, autologin) {
    var expires = new Date();
    expires.setTime(expires.getTime() + (30 * 24 * 60 * 60 * 1000));
    document.cookie = 'username=' + user +
        '; expires=' + expires.toGMTString() + '; path=/';

    window.name = (autologin ? 'autologin=' : 'login=') + user + '|' + pwd;
    window.location.replace('/webfig/' + window.location.hash);
}
function dologin() {
    login(get('name').value, get('password').value);
}
function loaded() {
    var p = window.name.split('=');
    if (p[0] == 'error' && p[1]) {
        var err = get('error');
        err.appendChild(document.createTextNode(p[1]));
        err.style.display = 'block';
    } else if (p[0] != 'noautologin' || p[1] != 1) {
        var user = '';
        if (user) {
            login(user, '', true);
            return;
        }
    }
    window.name = '';

    document.onkeydown = function(e) {
        e = e || event;
        if (e.keyCode == 13) {
            dologin();
            return false;
        }
        return true;
    };

    var username = null;
    var cookies = document.cookie.split(';');
    for (var i in cookies) {
        var c = trim(cookies[i]).split('=');
        if (c[0] == 'username') {
            username = c[1];
            break;
        }
    }

    if (username != null) {
        get('name').value = username;
        get('password').focus();
    } else {
        get('name').value = 'admin';
        get('name').focus();
    }
}
</script>
</head>

<body onload="loaded()">

<div id="container">

    <div id="box">
    <a href="http://mikrotik.com"><img src="mikrotik_logo.png" style="float: right;" /></a>

    <br style="clear: both;"/>

                <h1>RouterOS v6.48.1</h1>

        <p>You have connected to a router. Administrative access only. If this device is not in your possession, please contact your local network administrator. </p>

      <table id="login">
        <tr><td colspan="3"><h2>WebFig Login:</h2>
        <tr><td class="label">Login: <td><input id="name" type="text" tabindex="1">
         <td class="toolbar" rowspan="2">
         <ul class="toolbar">
           <li><a onclick="dologin()" ondragstart="return false;"><span>Login</span></a></li>
         </ul>
         <tr><td class="label">Password: <td><input id="password" type="password" tabindex="2">
        <tr><td colspan="3">
            <div id="error"></div>
      </table>

            <fieldset>
            <div class="floater">
                <a href="http://www.mikrotik.com/download/winbox.exe"><img src="winbox.png"/></a><br/>
                <label>Winbox</label>
            </div>

            <div class="floater">
                <a href="telnet://192.168.2.1"><img src="console.png"/></a><br/>
                <label>Telnet</label>
            </div>



            <div class="floater">
                <a href="/graphs"><img src="green.png"/></a><br/>
                <label>Graphs</label>
            </div>


            <div class="floater">
                <a href="/help/license.html"><img src="license.png"/></a><br/>
                <label>License</label>
            </div>

                        <div class="floater">
                <a href="http://wiki.mikrotik.com"><img src="help.png"/></a><br/>
                <label>Help</label>
            </div>

</fieldset>

            <br style="clear: both"/>
                            <div style="float: right">&copy; mikrotik</div>

    </div>
</div>

</div>

</body>
</html>


Connection to host lost.

solo
Posts: 1228
Joined: Sun Feb 14, 2021 10:31 am

Re: Unable to Access LAN Ports with Local Bridge

Post by solo » Mon Dec 26, 2022 9:39 pm

The subject is "Unable to Access LAN Ports with Local Bridge" yet telnet 192.168.2.1 80 where you connect to a LAN's port 80 works perfectly. No issue then, case solved?

Wait, in Hyper-V "Advanced Features" of the network adapter enable "MAC Address Spoofing" and in management OS vNIC set "Port Mirroring" to destination mode, while the VMs to source mode. It should work without a reboot.

Re-test it on non-192.168.2.1 LAN destinations and let us know.

IsThisRight
Posts: 5
Joined: Sat Dec 24, 2022 5:21 pm

Re: Unable to Access LAN Ports with Local Bridge

Post by IsThisRight » Mon Dec 26, 2022 11:11 pm

Thanks. Yeah, you're right on the title, I should have been more specific in stating a port other then default port 80 or at least explicitly stating the port I'm trying to access, which is as follows:

Code: Select all

C:\WINDOWS\system32>telnet 192.168.2.45 8123
Connecting To 192.168.2.45...Could not open connection to the host, on port 8123: Connect failed
Please let me know if the following covers at least the first part of your suggestion, if so, I couldn't quite figure out the part where you say "while the VMs to source mode", would you mind stepping me though doing that (apologies ahead if this is basic)?
  • "in Hyper-V "Advanced Features" of the network adapter enable "MAC Address Spoofing" and in management OS vNIC set "Port Mirroring" to destination mode"
2022-12-26_17h31_05.png
Note, that after making the above (^^^) changes and restarting the VM, I still got the same message doing a telnet as mentioned above.

In case it helps, I'm using the following to manage my VM

Code: Select all

Hyper-V Manager
Microsoft Corporation
Version: 10.0.19041.1
You do not have the required permissions to view the files attached to this post.

solo
Posts: 1228
Joined: Sun Feb 14, 2021 10:31 am

Re: Unable to Access LAN Ports with Local Bridge

Post by solo » Mon Dec 26, 2022 11:54 pm

Strictly speaking it should've worked on "MAC Address Spoofing" alone.

Review the settings, then try "Port Mirroring" with a step-by-step guide https://www.vembu.com/blog/hyper-v-port-mirroring/

If still no progress, please post from the VM host:

Code: Select all

netstat -r
ipconfig /all

IsThisRight
Posts: 5
Joined: Sat Dec 24, 2022 5:21 pm

Re: Unable to Access LAN Ports with Local Bridge

Post by IsThisRight » Tue Dec 27, 2022 5:15 am

Thanks for the "Port Mirroring" guide https://www.vembu.com/blog/hyper-v-port-mirroring/ but I couldn't connect it with my situation as I only have 1 VM and that documentation has a source VM and a destination VM. So I found this documentation: https://learn.microsoft.com/en-us/azure ... or-hyper-v, which I actually had everything in place though I followed the steps at the bottom under the section called "Configure the switch's mirroring mode" (see below image), then I completely restarted the Server hosting the VM and tried again but I'm still unable to access the VM + port (192.168.2.45:8123)
2022-12-26_23h17_39.png
Per your request, the following is from the VM host server (which is also the host server for the VPN)

Code: Select all

Microsoft Windows [Version 10.0.19044.2364]
(c) Microsoft Corporation. All rights reserved.

C:\WINDOWS\system32>netstat -r
===========================================================================
Interface List
  3...2c ca 7c 01 a4 9a ......Hyper-V Virtual Ethernet Adapter #2
  1...........................Software Loopback Interface 1
 19...00 15 5d ec a6 fa ......Hyper-V Virtual Ethernet Adapter
===========================================================================

IPv4 Route Table
===========================================================================
Active Routes:
Network Destination        Netmask          Gateway       Interface  Metric
          0.0.0.0          0.0.0.0      192.168.2.1      192.168.2.5    281
        127.0.0.0        255.0.0.0         On-link         127.0.0.1    331
        127.0.0.1  255.255.255.255         On-link         127.0.0.1    331
  127.255.255.255  255.255.255.255         On-link         127.0.0.1    331
     172.24.176.0    255.255.240.0         On-link      172.24.176.1   5256
     172.24.176.1  255.255.255.255         On-link      172.24.176.1   5256
   172.24.191.255  255.255.255.255         On-link      172.24.176.1   5256
      192.168.2.0    255.255.255.0         On-link       192.168.2.5    281
      192.168.2.5  255.255.255.255         On-link       192.168.2.5    281
    192.168.2.255  255.255.255.255         On-link       192.168.2.5    281
        224.0.0.0        240.0.0.0         On-link         127.0.0.1    331
        224.0.0.0        240.0.0.0         On-link       192.168.2.5    281
        224.0.0.0        240.0.0.0         On-link      172.24.176.1   5256
  255.255.255.255  255.255.255.255         On-link         127.0.0.1    331
  255.255.255.255  255.255.255.255         On-link       192.168.2.5    281
  255.255.255.255  255.255.255.255         On-link      172.24.176.1   5256
===========================================================================
Persistent Routes:
  Network Address          Netmask  Gateway Address  Metric
          0.0.0.0          0.0.0.0      192.168.2.1  Default
===========================================================================

IPv6 Route Table
===========================================================================
Active Routes:
 If Metric Network Destination      Gateway
  1    331 ::1/128                  On-link
  3    281 fe80::/64                On-link
 19   5256 fe80::/64                On-link
 19   5256 fe80::627a:3bb2:c2b:aedb/128
                                    On-link
  3    281 fe80::93a0:1439:e4d0:24d9/128
                                    On-link
  1    331 ff00::/8                 On-link
  3    281 ff00::/8                 On-link
 19   5256 ff00::/8                 On-link
===========================================================================
Persistent Routes:
  None

C:\WINDOWS\system32>ipconfig /all

Windows IP Configuration

   Host Name . . . . . . . . . . . . : DESKTOP-U8UGFU7
   Primary Dns Suffix  . . . . . . . :
   Node Type . . . . . . . . . . . . : Hybrid
   IP Routing Enabled. . . . . . . . : No
   WINS Proxy Enabled. . . . . . . . : No

Ethernet adapter vEthernet (Windows 10 Virtual Switch):

   Connection-specific DNS Suffix  . :
   Description . . . . . . . . . . . : Hyper-V Virtual Ethernet Adapter #2
   Physical Address. . . . . . . . . : 2C-CA-7C-01-A4-9A
   DHCP Enabled. . . . . . . . . . . : No
   Autoconfiguration Enabled . . . . : Yes
   Link-local IPv6 Address . . . . . : fe80::93a0:1439:e4d0:24d9%3(Preferred)
   IPv4 Address. . . . . . . . . . . : 192.168.2.5(Preferred)
   Subnet Mask . . . . . . . . . . . : 255.255.255.0
   Default Gateway . . . . . . . . . : 192.168.2.1
   DHCPv6 IAID . . . . . . . . . . . : 368619862
   DHCPv6 Client DUID. . . . . . . . : 00-01-00-01-25-F5-CA-3C-F8-B1-56-CD-C7-C6
   DNS Servers . . . . . . . . . . . : 8.8.8.8
                                       8.8.4.4
   NetBIOS over Tcpip. . . . . . . . : Enabled

Ethernet adapter vEthernet (Default Switch):

   Connection-specific DNS Suffix  . :
   Description . . . . . . . . . . . : Hyper-V Virtual Ethernet Adapter
   Physical Address. . . . . . . . . : 00-15-5D-EC-A6-FA
   DHCP Enabled. . . . . . . . . . . : No
   Autoconfiguration Enabled . . . . : Yes
   Link-local IPv6 Address . . . . . : fe80::627a:3bb2:c2b:aedb%19(Preferred)
   IPv4 Address. . . . . . . . . . . : 172.24.176.1(Preferred)
   Subnet Mask . . . . . . . . . . . : 255.255.240.0
   Default Gateway . . . . . . . . . :
   DHCPv6 IAID . . . . . . . . . . . : 318772573
   DHCPv6 Client DUID. . . . . . . . : 00-01-00-01-25-F5-CA-3C-F8-B1-56-CD-C7-C6
   DNS Servers . . . . . . . . . . . : fec0:0:0:ffff::1%1
                                       fec0:0:0:ffff::2%1
                                       fec0:0:0:ffff::3%1
   NetBIOS over Tcpip. . . . . . . . : Enabled
You do not have the required permissions to view the files attached to this post.

solo
Posts: 1228
Joined: Sun Feb 14, 2021 10:31 am

Re: Unable to Access LAN Ports with Local Bridge

Post by solo » Tue Dec 27, 2022 8:07 am

Look, it's going nowhere - I asked for VM host logs, I got VM guest again.

I had asked to "disable ALL firewalls/IDS/AV/etc" before the tests but it seems you've not done that.

As observed before, you are ABLE to "Access LAN Ports with Local Bridge", except for something anomalous on port 8123. Whatever it is, maybe its support forum can help.

IsThisRight
Posts: 5
Joined: Sat Dec 24, 2022 5:21 pm

Re: Unable to Access LAN Ports with Local Bridge

Post by IsThisRight » Tue Dec 27, 2022 2:48 pm

Sorry for your frustration, I do appreciate your help, I really am doing the best I can to provide answers to your asks though I may be misinterpreting some things

To address your suggestion that there could be something anomalous on port 8123:
  • The only time I've had a problem accessing the VM & port is when trying to access it over the SoftEther VPN via local bridge setup as described in my OP
  • I also setup port forwarding on my router to the VM & port and can access it remotely with no problem
You asked for VM Host logs - I was thinking you wanted the server hosting the VM which is what I gave you, I see now that this isn't what you're looking for (again my apologies for misinterpreting)

While the VM was starting up, I pressed ALT + F2 to access the OS CLI and although "-r" isn't an option for netstat for the OS I was able to do the following which produced the following which includes 0.0.0.0:8123 which to my understanding is expected output

Code: Select all

netstat -plunt | grep 8123
2022-12-27_08h57_08.png
I also executed nmcli and the following represents the correct ip address
2022-12-27_08h57_35.png
The following is what I did to disable all firewalls and AV on both client and server computers (I apologize, I don't know what "IDS" stands for)
2022-12-27_09h38_07.png
Although the title states "Unable to Access LAN Ports with Local Bridge", my original post explains the following (where no port specified will default to port 80) which I've since been more explicit as: 192.168.2.45:8123
  • "I'm able to resolve anything running on my LAN via the LAN IP address without a problem (for example: 192.168.x.x), but anything running on my LAN that uses a port doesn't resolve (for example: 192.168.x.x:xxxx)"
You do not have the required permissions to view the files attached to this post.

Post Reply