Hey guys, I need to redirect the external port 22 to a server under the subnet I am trying to user this command on Susefirewall2 but it doesn´t work out. FW_FORWARD_MASQ="201.173.40.0/26,192.168.0.37,tcp,22" or FW_FORWARD_MASQ="201.173.40.130/26,192.168.0.37,tcp,22" does someboy know another options that I could try? thaks Joni
Joni Hoppen wrote:
I need to redirect the external port 22 to a server under the subnet I am trying to user this command on Susefirewall2 but it doesn´t work out.
FW_FORWARD_MASQ="201.173.40.0/26,192.168.0.37,tcp,22" or FW_FORWARD_MASQ="201.173.40.130/26,192.168.0.37,tcp,22"
does someboy know another options that I could try? ftp needs more than just port 22. If it is active ftp, you would also need to forward 21 IIANM. You also might want to check out the SuSE ftp-proxy. -- Joe Morris New Tribes Mission Email Address: Joe_Morris@ntm.org Registered Linux user 231871
Joni Hoppen wrote:
Hey guys,
I need to redirect the external port 22 to a server under the subnet I am trying to user this command on Susefirewall2 but it doesn´t work out.
FW_FORWARD_MASQ="201.173.40.0/26,192.168.0.37,tcp,22" or FW_FORWARD_MASQ="201.173.40.130/26,192.168.0.37,tcp,22"
does someboy know another options that I could try?
The machine you have on the inside of your firewall needs to be able to connect to the outside also. You should have something like the following: "FW_MASQ_NETS="192.168.0.37/32" Which will give that one IP Address full access to the Internet. It might be possible to restrict access to specific ports, but I'm not familiar with SSH to know what ports are required for the return traffic. Also, you can restrict access to a single IP Address on the Internet if you know that you'll always connect from the same address each time. ~Dale
participants (3)
-
Dale Schuster
-
Joe Morris (NTM)
-
Joni Hoppen