[ previous ] [ next ] [ threads ]
 
 From:  Fred Wright <fw at well dot com>
 To:  m0n0wall at lists dot m0n0 dot ch
 Subject:  Re: [m0n0wall] NAT inbound
 Date:  Thu, 27 May 2004 20:03:34 -0700 (PDT) 
On Thu, 27 May 2004, Ron Rosson wrote:
> >Ron Rosson wrote:
> >
> >>Trying to redirect SSH from m0n0wall to a server on the inside and I
> am
> >>getting a block message in the firewall logs
> >>
> >>
> >>11:21:35.712962 sis1 @0:18 b xx.xx.xx.xx,19627 -> xx.xx.xx.xx,22 PR
> tcp
> >>len 20 64 -S IN
> >>
> >>Here is what the rules look like:
> >>
> >>WAN:
> >>TCP     *           *   <internal IP>   22
> >>
> >>WIRELESS
> >>*       LAN net     *   *                       *
> >>
> >>LAN
> >>*       LAN net     *   *                       *
> >>
> >>
> >>
> >>Anyone have any ideas.. This is 1.1b9
> >>
> >And proper NAT rules? just had to ask.. It should work just fine, can u 
> >connect to it from tha lan side?
> 
>  WAN        TCP     22 (SSH)    xx.xx.xx.xx     22 (SSH)
> 
> and yep.. made sure all was good on the lan side.. 

What column is the "WAN" in?  I have no such NAT column here (V1.0).

Is "xx.xx.xx.xx" the same as <internal IP> (which should be the SSH server
IP)?

Is "sis1" the WAN interface?

Is "xx.xx.xx.xx" in "xx.xx.xx.xx,22" in the log the same as <internal IP>,
(and not the same as the "xx.xx.xx.xx" in "xx.xx.xx.xx,19627")?

					Fred Wright