From owner-freebsd-questions Tue Aug 6 20:29:18 2002 Delivered-To: freebsd-questions@freebsd.org Received: from mx1.FreeBSD.org (mx1.FreeBSD.org [216.136.204.125]) by hub.freebsd.org (Postfix) with ESMTP id 8B9AE37B400 for ; Tue, 6 Aug 2002 20:29:14 -0700 (PDT) Received: from rambo.simx.org (rambo.simx.org [80.65.205.166]) by mx1.FreeBSD.org (Postfix) with ESMTP id B8A1843E6E for ; Tue, 6 Aug 2002 20:29:13 -0700 (PDT) (envelope-from listsub@401.cx) Received: from 401.cx (rocky [192.168.0.2]) by rambo.simx.org (8.12.5/8.12.5) with ESMTP id g773TCd3083147; Wed, 7 Aug 2002 05:29:12 +0200 (CEST) (envelope-from listsub@401.cx) Message-ID: <3D509465.4040207@401.cx> Date: Wed, 07 Aug 2002 05:30:45 +0200 From: "Roger 'Rocky' Vetterberg" User-Agent: Mozilla/5.0 (Windows; U; Windows NT 5.0; en-US; rv:1.0rc2) Gecko/20020618 Netscape/7.0b1 X-Accept-Language: en-us, en MIME-Version: 1.0 To: root@unixhideout.com Cc: freebsd-questions@FreeBSD.ORG Subject: Re: IPFW question. References: <1146.192.168.1.10.1028660420.squirrel@email.unixhideout.com> Content-Type: text/plain; charset=us-ascii; format=flowed Content-Transfer-Encoding: 7bit Sender: owner-freebsd-questions@FreeBSD.ORG Precedence: bulk List-ID: List-Archive: (Web Archive) List-Help: (List Instructions) List-Subscribe: List-Unsubscribe: X-Loop: FreeBSD.ORG Mike wrote: > I have a network that goes something like this. > > > static ip addy. 192.*10 192.*20 192.*30 192.*40 > 192.*50 > (INTERNET)==firewallrouter=-server1=-server2=-client=-client=-client > FBSD4.6 FBSD4.6 XP > XP XP > IPFW > > > Server one and server 2 are FreeBSD4.6-STABLE, all the clients, (desktops) > are windows XP (Sorry FreeBSD is about as far from a desktop as i am a > good schematic writer.. Although i do occasionally startX, FreeBSD can > stick with gnome gnibbles and hangman when it comes to games. When im > doing my hardcore gaming, its XP all the way.) > > server1 is unixhideout.com and it runs just about everything. server2 is a > backup server. Its only purpose is to connect to server1 using cvsup, and > backup and archive important directories for me in case of a *gasp* > FreeBSD crash?!? (always expect the worst before it happens right?) My > question is this. I want to allow free shells for my site so users can > compile and test code. I do not want to give shells on my webserver. I > want to use IPFW divert, which "server1" has installed, to have any ssh > traffic be directed to server2 instead of server1. Now heres the problem > as i see it. How do i open two port 22 ports, in my router? The only other > solution as i see it is to get another static ip, and use my second > router, which is in a closet currently, or, simply enable TELNET on server > 2. and port forward that.. But even then i would like it to have its own > webpage , then they can test their own CGI/PERL and PHP scripts, so i > would simply run into the same problem with port 80. Any ideas or input > would be great. > > If you have only one static IP, you have only one port 22. Simple as that. Get another ip, or start a SSH daemon on another port, say 222. Same goes for webserver. Since you only have one port 80 you have to get another ip or run the webserver on another port. -- R To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-questions" in the body of the message