Avocent DSR8020 KVM/IP - Network Connect Error - Solution

This error is commonly due to Java security or TLS settings but there is a second issue with forwarded ports that also causes it.

 

1. Java Security/TLS Settings issue:

This article has the solution to change them all in Linux automatically

2. Port Forwarding Issue if your Avocent DSR is behind NAT/private IP

One would assume if you can get to the interface successfully via port 80/443 that all would be well but it's not enough.

Actually a port scan shows the following ports are open on the DSR:

PORT     STATE SERVICE
80/tcp   open  http
443/tcp  open  https
2068/tcp open  advocentkvm
3211/tcp open  avsecuremgmt
3871/tcp open  avocent-adsap
8192/tcp open  sophos

You could forward all above ports but for normal functionality they are not required unless you are using the Avocent software I believe.

Forward these ports to your private IP of the Avocent DSR:

80,443,2068,8192

An example in iptables of how to forward the ports:

-s 192.168.5.4/32 #this is the only public IP that can access it (you can do away with this line if you want any remote IP to have access but for security this is recommended.  I find the unit itself tends to crash from attacks/hacking attempts when left wide open to the public.

iptables -A PREROUTING -t nat -s 192.16.5.4/32 -d 103.2.5.2/32 -p tcp -m multiport --dports 80,443,2068,8192,3871,3211 -j DNAT --to 192.168.10.5

The same portforwarding can also be achieved with OpenSSH like this:

*Replace 192.168.10.5 with the NAT IP of your Avocent DSR unit

ssh -L 80:192.168.10.5:80 -L 443:192.168.10.5:443 -L 2068:192.168.10.5:2068 -L 8192:192.168.10.5:8192  user@remotehost.com

#bash script

remoteip=publicip

internalip=lanip

ssh -L 80:$internalip:80 -L 443:$internalip:443 -L 2068:$internalip:2068 -L 8192:$internalip:8192  user@$remoteip
 

Other related Avocent DSR issues

http://realtechtalk.com/Avocent_Unable_to_load_resource_avctVideojar-1646-articles

http://realtechtalk.com/Avocent_8020_KVM_Java_Icedtea_Viewer_-1702-articles


Tags:

avocent, dsr, kvm, ip, solutionthis, commonly, tls, settings, forwarded, ports, linux, automatically, forwarding, nat, interface, successfully, via, scan, tcp, http, https, advocentkvm, avsecuremgmt, adsap, sophos, functionality, software, iptables, recommended, tends, attacks, hacking, attempts, prerouting, multiport, dports, dnat, portforwarding, achieved, openssh, ssl, user, remotehost, realtechtalk, avocent_unable_to_load_resource_avctvideojar, articles, avocent_, _kvm_java_icedtea_viewer_,

Latest Articles

  • CentOS 6 impossible to compile a newer libguestfs
  • chroot
  • How To Get Started on Ubuntu with gpt-2 OpenAI Text Prediction
  • Remove cloud-init in your VM
  • QEMU-KVM KVM Command Line Practical Guide
  • Linux How To Change NIC Name to eth0 instead of enps33 or enp0s25
  • virt-resize: error: libguestfs error: could not create appliance through libvirt.
  • Asterisk Does Not Retry When Authentication Fails
  • Linux Debian Ubuntu How To Install PEPPER Faster and Latest Adobe Flash Player in Firefox
  • How To Speed Up Linux Ubuntu and Debian Based Computers By Improving CPU Performance and Changing the CPU Governor
  • Convert data or file to base64 on a single line
  • Linux Mint Ubuntu Debian radeon slow 2D performance issues radeon_dp_aux_transfer_native: 158 callbacks suppressed
  • mdadm: super0.90 cannot open /dev/sdb1: Device or resource busy mdadm: /dev/sdb1 is not suitable for this array.
  • How To Install NextCloud on Centos 7 and Centos 8
  • AH01630: client denied by server configuration:
  • ERROR: Could not find a version that satisfies the requirement PIL (from versions: none) ERROR: No matching distribution found for PIL
  • ZTE Camera Cannot Work unable to connect to camera. Camera has been disabled becaue of security policies or is being used by other apps
  • QEMU KVM how to boot off a physical CD/DVD/BDROM Drive
  • How To Install OpenProject on Centos 7 Step-by-Step Guide
  • Ubuntu Debian Linux Cannot Install Wine Solution - wine1.6 : Depends: wine1.6-i386 (= 1:1.6.2-0ubuntu14.2) but it is not installable wine1.4 : Depends: wine1.6 but it is not going to be installed