|---------+---------------------------->
| | "Joe Morris |
| | (NTM)" |
| |
--------------------------------------------------------------------------------------------------------------| | | | To: Suse
| | cc: | | Subject: Re: [SLE] Firewall problems | --------------------------------------------------------------------------------------------------------------|
Joni Hoppen wrote:
I need to redirect the external port 22 to a server under the subnet I am trying to user this command on Susefirewall2 but it doesn´t work out.
FW_FORWARD_MASQ="201.173.40.0/26,192.168.0.37,tcp,22" or FW_FORWARD_MASQ="201.173.40.130/26,192.168.0.37,tcp,22"
does someboy know another options that I could try? ftp needs more than just port 22. If it is active ftp, you would also need to forward 21 IIANM. You also might want to check out the SuSE ftp-proxy. -- Joe Morris New Tribes Mission Email Address: Joe_Morris@ntm.org Registered Linux user 231871
Port 22 is SSH not FTP. The above can be easily created in the ncurses based YAST -> under Susefirewall2 section. -- Check the headers for your unsubscription address For additional commands send e-mail to suse-linux-e-help@suse.com Also check the archives at http://lists.suse.com Please read the FAQs: suse-linux-e-faq@suse.com
I still having problems .... i didnt understand why did you talk about ftp i was talking about SHH . I just want to conect ssh into a machine which is under my network but that rules are not running fine e.g: internet --------------------------------firewall port 22 --------------------------------- machine 192.168.0.37 port 22 i dont know why FW_FORWARD_MASQ="201.173.40.0/26,192.168.0.37,tcp,22" or FW_FORWARD_MASQ="201.173.40.130/26,192.168.0.37,tcp,22" after that when i tray to connect to ssh ..... i still conectin ssh in to my firewall.... i glad if somecan help me whith that thans again Joni kevin.j.lisciotti@jpmchase.com wrote:
|---------+----------------------------> | | "Joe Morris | | | (NTM)" | | |
| | | | | | 04/25/2005 10:32 | | | AM | | | | |---------+----------------------------> --------------------------------------------------------------------------------------------------------------| | | | To: Suse
| | cc: | | Subject: Re: [SLE] Firewall problems | --------------------------------------------------------------------------------------------------------------| Joni Hoppen wrote:
I need to redirect the external port 22 to a server under the subnet I am trying to user this command on Susefirewall2 but it doesn´t work out.
FW_FORWARD_MASQ="201.173.40.0/26,192.168.0.37,tcp,22" or FW_FORWARD_MASQ="201.173.40.130/26,192.168.0.37,tcp,22"
does someboy know another options that I could try?
ftp needs more than just port 22. If it is active ftp, you would also need to forward 21 IIANM. You also might want to check out the SuSE ftp-proxy. -- Joe Morris New Tribes Mission Email Address: Joe_Morris@ntm.org Registered Linux user 231871
Port 22 is SSH not FTP. The above can be easily created in the ncurses based YAST -> under Susefirewall2 section.
-- Check the headers for your unsubscription address For additional commands send e-mail to suse-linux-e-help@suse.com Also check the archives at http://lists.suse.com Please read the FAQs: suse-linux-e-faq@suse.com
Joni Hoppen wrote:
I still having problems .... i didnt understand why did you talk about ftp i was talking about SHH . I made a mistake, forgot 22 was ssh, was thinking 21 and 20. Sorry. :-[ I just want to conect ssh into a machine which is under my network but that rules are not running fine e.g:
internet --------------------------------firewall port 22 --------------------------------- machine 192.168.0.37 port 22
i dont know why FW_FORWARD_MASQ="201.173.40.0/26,192.168.0.37,tcp,22" or FW_FORWARD_MASQ="201.173.40.130/26,192.168.0.37,tcp,22"
after that when i tray to connect to ssh ..... i still conectin ssh in to my firewall....
i glad if somecan help me whith that I usually just ssh into the firewall/gateway, then ssh to the internal machine from the firewall. From what I see in the config file, the above should work. I am all out of ideas and mistakes for this one. -- Joe Morris New Tribes Mission Email Address: Joe_Morris@ntm.org Registered Linux user 231871
On Monday 25 April 2005 12:24 pm, Joni Hoppen wrote:
FW_FORWARD_MASQ="201.173.40.0/26,192.168.0.37,tcp,22" or FW_FORWARD_MASQ="201.173.40.130/26,192.168.0.37,tcp,22"
after that when i tray to connect to ssh ..... i still conectin ssh in to my firewall....
i glad if somecan help me whith that
When you set up the basic firewall settings you most likely allowed port 22 into your firewall. You can't have port 22 going to both places. You can either uncheck port 22 in the basic settings (FW_SERVICES_EXT_TCP does not contain SSH or 22) or change the port being used above. FW_FORWARD_MASQ="201.173.40.0/26,192.168.0.37,tcp,322,22" The above would forward port 322 to port 22 on the other system. This way you could ssh directly to both machines. You would need an SSH client capable of using different ports. I am using a similar line: 199.6.38.58/32,192.168.50.192,tcp,8080,80 to access another web server You could also swap this around. Change the port for SSH on the firewall to something other than 22. You would still need to uncheck SSH in the basic settings and add the new port in the advanced box (FW_SERVICES_EXT_TCP="newport"). I hope that made sense ... I don't always ... if not, could someone else say what I mean? ;-) -- Louis Richards
participants (4)
-
Joe Morris (NTM)
-
Joni Hoppen
-
kevin.j.lisciotti@jpmchase.com
-
Louis Richards