From owner-freebsd-questions@FreeBSD.ORG Wed Jan 19 21:11:23 2005 Return-Path: Delivered-To: freebsd-questions@freebsd.org Received: from mx1.FreeBSD.org (mx1.freebsd.org [216.136.204.125]) by hub.freebsd.org (Postfix) with ESMTP id 7F56516A4CE for ; Wed, 19 Jan 2005 21:11:23 +0000 (GMT) Received: from wproxy.gmail.com (wproxy.gmail.com [64.233.184.199]) by mx1.FreeBSD.org (Postfix) with ESMTP id BB4B943D48 for ; Wed, 19 Jan 2005 21:11:22 +0000 (GMT) (envelope-from mbrunstein@gmail.com) Received: by wproxy.gmail.com with SMTP id 55so4277wri for ; Wed, 19 Jan 2005 13:11:17 -0800 (PST) DomainKey-Signature: a=rsa-sha1; q=dns; c=nofws; s=beta; d=gmail.com; h=received:message-id:date:from:reply-to:to:subject:mime-version:content-type:content-transfer-encoding; b=YZgl2MUGqYN1jpOliFKR9SWqCbsRimQjqLf+nwmS4LvKPGirOWsX1UOh1a5e3n9pWWT17m5EvVTH4oufHIQdBuU3zkb/6Y/4RjBW1Y3EPL7m46BU1qgDuMpW5CT8y7s6XVVwzI221DpJOjc+3PxuCgMOYSamJrWDJ8xIXuK44K4= Received: by 10.54.39.76 with SMTP id m76mr216918wrm; Wed, 19 Jan 2005 13:11:16 -0800 (PST) Received: by 10.54.3.36 with HTTP; Wed, 19 Jan 2005 13:11:16 -0800 (PST) Message-ID: <59822964050119131120fbb88c@mail.gmail.com> Date: Wed, 19 Jan 2005 18:11:16 -0300 From: Mauricio Brunstein To: freebsd-questions@freebsd.org Mime-Version: 1.0 Content-Type: text/plain; charset=ISO-8859-1 Content-Transfer-Encoding: quoted-printable Subject: =?iso-8859-1?q?Can=B4t_access_a_box_remotely?= X-BeenThere: freebsd-questions@freebsd.org X-Mailman-Version: 2.1.1 Precedence: list Reply-To: Mauricio Brunstein List-Id: User questions List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Wed, 19 Jan 2005 21:11:23 -0000 Hi to all! I can=B4t access to a box from the internet, using ssh. Also the box is configured as a gateway, and I can=B4t access the redirected ports of the computers in the internal network. Plase help! I don=B4t have any idea of how to resolve this problem!!!! Than you in advance,=20 Mauricio. PD: Some additional data of interest: server:~ $ uname -a FreeBSD server.estudio 5.3-RELEASE-p1 FreeBSD 5.3-RELEASE-p1 #1: Tue Nov 23 02:13:24 ART 2004 =20 root@server.estudio:/usr/obj/usr/src/sys/GENERICconALTQ i386 server:~ $ server:~ $ sudo cat /etc/ppp/ppp.conf default: set log Phase Chat IPCP CCP tun command set ifaddr 10.0.0.1/0 10.0.0.2/0 255.255.255.255 my_isp: set device PPPoE:fxp0 # replace fxp0 with your Ethernet device set mtu 1492 set mru 1492 enable mssfixup set ctsrts off set speed sync disable acfcomp protocomp deny acfcomp set authname xxxxxxxxx set authkey yyyyyyyyyy add default HISADDR # enable lqr disable ipv6cp # set lqrperiod 5 enable dns server:~ $ server:~ $ sudo cat /etc/rc.conf # -- sysinstall generated deltas -- # Sun Nov 21 13:07:41 2004 # Created: Sun Nov 21 13:07:41 2004 # Enable network daemons for user convenience. # Please make all changes to this file, not to /etc/defaults/rc.conf. # This file now contains just the overrides from /etc/defaults/rc.conf. hostname=3D"server.estudio" netd_enable=3D"YES" saver=3D"dragon" scrnmap=3D"NO" sshd_enable=3D"YES" sshd_flags=3D"-4 -p 222" usbd_enable=3D"YES" network_interfaces=3D"lo0 rl0 fxp0 tun0" ifconfig_tun0=3D" " ifconfig_rl0=3D"inet 192.168.2.1 netmask 255.255.255.0" ifconfig_fxp0=3D"media 10baseT/UTP up" ppp_enable=3D"YES" ppp_mode=3D"ddial" ppp_nat=3D"YES" ppp_profile=3D"my_isp" router_enable=3D"YES" gateway_enable=3D"YES" # Set to YES if this host will be a gateway pf_enable=3D"YES" # Enable PF (load module if required) pf_rules=3D"/etc/pf.conf" # rules definition file for pf pf_flags=3D"-d" # additional flags for pfctl startup #pflog_enable=3D"YES" # start pflogd(8) #pflog_logfile=3D"/var/log/pflog" # where pflogd should store the logfile #pflog_flags=3D"" # additional flags for pflogd startup inetd_enable=3D"YES" # Run the network daemon dispatcher (YES= /NO). inetd_program=3D"/usr/sbin/inetd" # path to inetd, if you want a different = one. inetd_flags=3D"-wW -C 60" # Optional flags to inetd #nmbd_enable=3D"YES" #smbd_enable=3D"YES" #winbindd_enable=3D"YES" # # named. It may be possible to run named in a sandbox, man security for # details. # named_enable=3D"YES" # Run named, the DNS server (or NO). named_program=3D"/usr/sbin/named" # path to named, if you want a different = one. named_flags=3D"-u bind" # Flags for named named_pidfile=3D"/var/run/named/pid" # Must set this in named.conf as well named_chrootdir=3D"/var/named" # Chroot directory (or "" not to auto-chr= oot it) named_chroot_autoupdate=3D"YES" # Automatically install/update chrooted # components of named. See /etc/rc.d/named. named_symlink_enable=3D"YES" # Symlink the chrooted pid file server:~ $ server:~ $ netstat -an|grep LISTEN tcp4 0 0 *.8021 *.* LISTEN tcp4 0 0 *.901 *.* LISTEN tcp4 0 0 *.22 *.* LISTEN tcp4 0 0 *.21 *.* LISTEN tcp4 0 0 127.0.0.1.25 *.* LISTEN tcp4 0 0 *.222 *.* LISTEN tcp6 0 0 ::1.953 *.* LISTEN tcp4 0 0 127.0.0.1.953 *.* LISTEN tcp4 0 0 127.0.0.1.53 *.* LISTEN tcp4 0 0 192.168.2.1.53 *.* LISTEN server:~ $