Hello,
I'm trying to set up the following:
- linux-box_1 (Suse 6.1 with kernel 2.2.5) is running internet services
for our lan (www,ftp, mail,...) and is connected to the internet via
dial-up isdn (dial on demand, fix ip-address) and to the lan on eth0
- linux-box_1 is running fine, all the services are working, masq. is set
up properly.
- linux-box_2 ( by now Suse 5.2 with kernel 2.0.36 , but this will change soon)
is among other things running a cvs server. ( pserver auth. )
- in the near future (next week) we need access to the cvs server from
the internet but in a save way. I cannot move the cvs repository onto
box_1 ( no scsi-adapter there)
- my idea is to run sshd on the gateway ( box_1) and redirect the output from
it to the cvs-server.
- sshd is running fine, and I can access pop3 from the outside piped through
ssh
- now, if I try to do the same with cvs it does not work. I set up a ipchains - rule
to allow the necessary packets ( no reject or deny in the logs) and used
ipmasqadm to forward packets from $IP_WAN $CVS_PORT on the gateway
on to $IP_CVS $CVS_PORT on the cvs-server.
- when I switch on logging of all packets in all chains and try to connect from the
outside to our cvs server, I see the packets arriving on $IP_WAN $SSH_PORT
then going from $IP_WAN to $IP_WAN $CVS_PORT on device lo and back the
same way. In the log I see an port open failure....
- I read in the HOWTO or somewhere that one can not forward packets from local
services; as the packets originate from the sshd, this would explain it.
??? Is this try and is there any other solution to my problem??
thanks bert
-
To unsubscribe from this list: send the line "unsubscribe linux-net" in
the body of a message to [EMAIL PROTECTED]
