Problem with port forwarding

Help and Support
1

Hi all.

I am trying to lock my firewall down on my Hetzner server. When I have the firewall enabled on the box (disabled in Windows) it works perfectly and it maps the drive. As soon as I enable the firewall is when I run into issues.

As I understood it, 443 should be the port it runs on, I have enabled this in the firewall as an exception, however I am getting the error that is at the end of this post. As soon as I turn the firewall off again, the drive maps.

What is your rclone version (output from rclone version)

1.52.2

Which OS you are using and how many bits (eg Windows 7, 64 bit)

Windows Server 2019

Which cloud storage system are you using? (eg Google Drive)

Google Drive

The command you were trying to run (eg rclone copy /tmp remote:tmp)

rclone mount --allow-other --dir-cache-time 72h --drive-chunk-size 64M --vfs-read-chunk-size 32M --vfs-read-chunk-size-limit off gdrive: X: --config "C:\Users\Administrator\.config\rclone\rclone.conf" --vfs-cache-mode writes

A log from the command with the -vv flag

2021/03/17 13:46:35 DEBUG : Google drive root '': Mounting on "X:"
2021/03/17 13:47:35 DEBUG : pacer: low level retry 1/10 (error Get "https://www.googleapis.com/drive/v3/changes/startPageToken?alt=json&prettyPrint=false&supportsAllDrives=true": dial tcp 142.250.185.74:443: i/o timeout)
2021/03/17 13:47:35 DEBUG : pacer: Rate limited, increasing sleep to 1.235369267s
2021/03/17 13:48:35 DEBUG : pacer: low level retry 2/10 (error Get "https://www.googleapis.com/drive/v3/changes/startPageToken?alt=json&prettyPrint=false&supportsAllDrives=true": dial tcp 142.250.185.74:443: i/o timeout)
2021/03/17 13:48:41 DEBUG : pacer: Rate limited, increasing sleep to 2.84473301s
2021/03/17 13:49:41 DEBUG : pacer: low level retry 3/10 (error Get "https://www.googleapis.com/drive/v3/changes/startPageToken?alt=json&prettyPrint=false&supportsAllDrives=true": dial tcp 142.250.185.74:443: i/o timeout)
2021/03/17 13:53:52 DEBUG : pacer: Rate limited, increasing sleep to 4.741214757s
2021/03/17 13:54:52 DEBUG : pacer: low level retry 4/10 (error Get "https://www.googleapis.com/drive/v3/changes/startPageToken?alt=json&prettyPrint=false&supportsAllDrives=true": dial tcp 142.250.74.202:443: i/o timeout)
2021/03/17 13:54:52 DEBUG : pacer: Rate limited, increasing sleep to 8.547342446s
2

You aren’t forwarding a port but you are allowing outbound HTTPS traffic which goes out on port 443.

The rclone error means you don’t have your firewall configured right and need to allow that out.

3

image
image1149×350 20.7 KB

I did allow it in the firewall.

Apparently I just had to allow outgoing TCP connections as stated on a Hetzner documentation that I missed. In order for outgoing TCP connections to work, you need to open ports 32768-65535 with TCP protocol and use the ack TCP flag.

Deleted rule #8 on mine and just left #9 and the rclone mount is working now (dismounted and remounted to double check)

4

This topic was automatically closed 3 days after the last reply. New replies are no longer allowed.