I have a firewall with two network cards running Sid with kernel 2.2.17. I have the following rule:
/usr/sbin/ipmasqadm portfw -a -P tcp -L $IP_REAL 22 -R $MAGNETO 22 And it works fine. IP_REAL is the dhcp granted IP from my ISP, MAGNETO is the ssh server behind the firewall, and MYSTIQUE is the internal IP of the firewall. When I try the following rule: /usr/sbin/ipmasqadm portfw -a -P tcp -L $MYSTIQUE 22 -R $MAGNETO 22 I get timeout errors from ssh. With no rule, when trying to ssh to IP_REAL from inside the firewall, I get timeout errors. I'm trying to have an ssh request to kwiqsilver.org forward to magneto both externally (which works) and internally, so I can access the CVS server with my notebook inside or outside. Is there a way to get this to work better? Would I be better off upgrading to 2.4 to use the newer firewalling system? Thanks, Jason