[Firehol-support] DNAT with port redirection.

Grigory Fateyev greg at anastasia.ru
Thu Nov 4 13:02:31 GMT 2004


Hello, Costa!
03 Ноября 2004г. в 21:21 You wrote:

Yes firewall allow to SECOND server via ssh. I	come in to MAIN server
ssh 81.18... than can come in to SECOND ssh 192.168.0.111.

> Hi Grigory,
> 
> dnat is one thing, packet filtering is another. Does the firewall
> (i.e. a route or server statement in a router definition) allow the
> ssh service to 192.168.0.111?
> 
> Costa
> 
> 
> > Hello!
> >
> > Can you help me with DNAT and port redirection?
> > I have to servers MAIN and SECOND. MAIN real IP 81.18... and
> > interface eth1 and I can enter ssh 81.18... But to the SECOND server
> > have lan IP 192.168.0.111 and i want to enter on it through not
> > standart port
> >
> > dnat to 192.168.0.111:22 inface eth1 dst ${MAIN_IP} proto tcp dport
> > 33333
> >
> > but I can not enter ssh 81.18... -p 33333. Why?
> >


-- 
Всего наилучшего!
greg at anastasia.ru Григорий.





More information about the Firehol-support mailing list