[ previous ] [ next ] [ threads ]
 
 From:  Ron Rosson <ron at oneinsane dot net>
 To:  m0n0wall at lists dot m0n0 dot ch
 Cc:  Fred Wright <fw at well dot com>
 Subject:  Re: [m0n0wall] NAT inbound
 Date:  Thu, 27 May 2004 23:26:16 -0700
>
>On Thu, 27 May 2004, Ron Rosson wrote:
>> >Ron Rosson wrote:
>> >
>> >>Trying to redirect SSH from m0n0wall to a server on the inside and
I
>> am
>> >>getting a block message in the firewall logs
>> >>
>> >>
>> >>11:21:35.712962 sis1 @0:18 b xx.xx.xx.xx,19627 -> xx.xx.xx.xx,22 PR
>> tcp
>> >>len 20 64 -S IN
>> >>
>> >>Here is what the rules look like:
>> >>
>> >>WAN:
>> >>TCP     *           *   <internal IP>   22
>> >>
>> >>WIRELESS
>> >>*       LAN net     *   *                       *
>> >>
>> >>LAN
>> >>*       LAN net     *   *                       *
>> >>
>> >>
>> >>
>> >>Anyone have any ideas.. This is 1.1b9
>> >>
>> >And proper NAT rules? just had to ask.. It should work just fine,
can 
>u 
>> >connect to it from tha lan side?
>> 
>>  WAN        TCP     22 (SSH)    xx.xx.xx.xx     22 (SSH)
>> 
>> and yep.. made sure all was good on the lan side.. 
>
>What column is the "WAN" in?  I have no such NAT column here (V1.0).

That is the header under interfaces.

>
>Is "xx.xx.xx.xx" the same as <internal IP> (which should be the SSH 
>server
>IP)?
>
>Is "sis1" the WAN interface?
>
>Is "xx.xx.xx.xx" in "xx.xx.xx.xx,22" in the log the same as <internal 
>IP>,
>(and not the same as the "xx.xx.xx.xx" in "xx.xx.xx.xx,19627")?
>

I am basically redirecting all requests on port 22 on the WAN interface
to a machine on the internal lan port 22.

-Ron
--
Ron Rosson
ron at oneinsane dot net