|
Jeffrey: Are
you trying to use port 22 for both? How are the rules going to differentiate
between where you really want to go? Have you tried setting up a different port for one of
them? Say port 2222 forwarded to port 22 on the internal machine. Something
along the lines of the following. $IPTABLES
-t nat -A PREROUTING -p tcp -i $EXTIF -d $EXTIP \ -s
$ANYWHERE --dport 2222 -j DNAT --to $INTSSH:22 $IPTABLES
-A FORWARD -p tcp -i $EXTIF -o $INTIF -m state --state NEW,ESTABLISHED,RELATED
\ -d $INTSSH
--dport $22 -j ACCEPT I
may be off base here. Perhaps you could post the rules you are trying to use
for the purpose for the group to review. Stu……….. -----Original
Message----- I need
some help on DNAT and connecting to a services on the firewall. I have
ssh setup on the firewall and on a pc in the internal network. I can't
seem to connect to both. Everything gets routed to the internal
net. I have different rule sets and sources but the only one I can
connect to is the forwarded host. __________________________________________________ Jeffrey Miller Tel.: (713)
207-7808 |
- DNAT hints Miller, Jeffrey N.
- Stewart Thompson
