On Saturday 22 October 2005 06:39, Michael D Schleif wrote: > > Tested Scenarios > ---------------- > I. When I do this: > > DNAT net loc:$A:22 tcp 60022 > > then, I can successfully ssh from [C] to [A]; but, the proxy at [B] > prevents ssh from [B] to [A]. > > II. When I do this: > > DNAT net loc:$A:22 tcp 443 > > shorewall *fails* to allow the connection from anywhere to [A]; and > there are *NO* messages in /var/log/shorewall.log. >
To Shorewall, there is absolutely no difference between those two cases. -Tom -- Tom Eastep \ Nothing is foolproof to a sufficiently talented fool Shoreline, \ http://shorewall.net Washington USA \ [EMAIL PROTECTED] PGP Public Key \ https://lists.shorewall.net/teastep.pgp.key
pgpJX2FSuiEfn.pgp
Description: PGP signature
