my friend can only go "out" on port 23, so I added this...
iptables -t nat -A PREROUTING -i eth1 -p tcp -m tcp --dport 23 -j DNAT --to-destination 192.168.0.254:22
(eth1 is the "public" interface)
which is probably a little extreme the way I have it laid out, but it works :)
--On Thursday, December 05, 2002 06:37:47 PM -0700 Guy Fraser <guy@incentre.net> wrote:
Why bother with a redirect, just run your sshd with a "-p 21" option. Guy Greg Gatlin wrote:I updated my xinetd to the newest version with up2date and my redirect is no longer functioning. I upgraded to xinetd-2.3.7-5. My redirect is so I can get to my box from work. They block port 22 and leave 21 open. Here is my xinetd configuration that worked before the upgrade: service ssh-ftp { disable = no port = 21 protocol = tcp flags = REUSE socket_type = stream wait = no user = root redirect = 10.0.0.25 22 } I have tried many different combinations, xinetd will not open port 21 unless I specify a service in the definition. It is not the firewall. I installed anonftp and xinetd opened port 21. I changed sshd to listen on port 21, xinetd opened port 21. Did something change that I need to add to the configuration? I scoured xinetd.org and didn't find any clues. Thanks, GREG-- Psyche-list mailing list Psyche-list@redhat.com https://listman.redhat.com/mailman/listinfo/psyche-list
-- Tommy McNeely -- Tommy.McNeely@Sun.COM Sun Microsystems - IT Ops - Broomfield Campus Support Phone: x50888 / 303-464-4888 -- Fax: 720-566-3168 -- Psyche-list mailing list Psyche-list@redhat.com https://listman.redhat.com/mailman/listinfo/psyche-list
