On Wed, Feb 07, 2001 at 05:14:18PM -0800, kmself@ix.netcom.com wrote:
> I'm trying to forward port 23 (telnet) on my firewall to 22 (ssh) on my
> workstation. Getting around some outbound traffic filtering issues.
>
> However, when I attempt to connect to this interface, I'm getting
> "connection refused".
>
> The boxen in question are firewall: OpenBSD running ipf (firewall) and ipnat
> (masquerade/NAT), and workstation: Debian, no filters or masq.
>
> I'm trying to figure out where the stoppage is occuring, it's a bit hard
> to work that out. I'd appreciate any suggestions in troubleshooting the
> problem. I *think* I've configured my forwarding and filtering rules to
> let this happen, but it seems it's not. I'm suspecting tcpwrappers on
> the GNU/Linux side, but can't work out whether or why that would be
> happening. No logs on either the firewall or the GNU/Linux box appear
> to be updating as the refusals appear (I'm trying to connect _from_ the
> workstation _to_ the external network IP of the firewall right now).
>
I was screwing around and did something similar the other day. My open
port to the outside was 26, redirected to internal 10.10.10.2 port 26.
I set up sshd on the internal to be looking on port 26. I could have
probably just left it on 22. Just trying things.
Here is my ipf rule -
pass in quick on ne3 proto tcp from any to 10.10.10.2/32 port = 26
flags S keep state
ipnat -
rdr ne3 24.178.140.157/32 port 26 -> 10.10.10.2 port 26
To login I used -
$ ssh -p 26 <ip number>
It looks to me like your rules are ok. These were two openbsd boxes I
was accessing from a remote debian machine.
kent
--
>From seeing and seeing the seeing has become so exhausted
First line of "The Panther" - R. M. Rilke
