On Sun, 1 Dec 2002 15:52:02 +0100, "Ambor" <ambor@alternity.net> wrote in message <000801c29949$359d2a70$02a8a8c0@hades>: > Hello everyone, > > I'm trying to dnat SSH throught the firewall to an internal machine. > I use following Rule > > iptables -t nat -A PREROUTING -i eth0 -p tcp --dport 2323 -j DNAT > --to-destination internal_IP:2323 > > eth0 is connected to internet > > The problem is that the connection is allrght it just seems that I > don't get an answer from the ssh server.(I'm getting a connection > timeout, ot a connection refused) > > To be sure I don't filter anything, so all trafic is accepted ..you and your internet ssh customers have ssh on port 2323 and not 22? -- ..med vennlig hilsen = with Kind Regards from Arnt... ;-) ...with a number of polar bear hunters in his ancestry... Scenarios always come in sets of three: best case, worst case, and just in case.
