From owner-freebsd-questions Mon Dec 9 15:57:50 2002 Delivered-To: freebsd-questions@freebsd.org Received: from mx1.FreeBSD.org (mx1.freebsd.org [216.136.204.125]) by hub.freebsd.org (Postfix) with ESMTP id 56AAF37B401 for ; Mon, 9 Dec 2002 15:57:48 -0800 (PST) Received: from www.omicnet.com (ip-208-181-72-171.adsl.radiant.net [208.181.72.171]) by mx1.FreeBSD.org (Postfix) with ESMTP id 4CFD443EC2 for ; Mon, 9 Dec 2002 15:57:47 -0800 (PST) (envelope-from inspector.us@omicnet.com) Received: from inspectorbox (130-94-160-46-dsl.hevanet.com [130.94.160.46]) by www.omicnet.com (8.9.3/8.9.2) with SMTP id PAA16210 for ; Mon, 9 Dec 2002 15:57:30 -0800 From: "Joshua Lokken" To: Subject: SSH through firewall Date: Mon, 9 Dec 2002 15:57:30 -0800 Message-ID: MIME-Version: 1.0 Content-Type: text/plain; charset="iso-8859-1" Content-Transfer-Encoding: 7bit X-Priority: 3 (Normal) X-MSMail-Priority: Normal X-Mailer: Microsoft Outlook IMO, Build 9.0.2416 (9.0.2911.0) X-MIMEOLE: Produced By Microsoft MimeOLE V6.00.2800.1106 Importance: Normal Sender: owner-freebsd-questions@FreeBSD.ORG Precedence: bulk List-ID: List-Archive: (Web Archive) List-Help: (List Instructions) List-Subscribe: List-Unsubscribe: X-Loop: FreeBSD.ORG Hello all I asked this question a couple of weeks back, but have not yet been able to make this work. I often transfer files to my home machines from work using scp. Currently, if I want to move a file to a machine on my LAN, I first have to copy the file to a user home dir on the gateway box, then recopy it from the gateway to the internal box. How do I avoid this extra step? eg, 130.94.160.46 ------------------> 12.225.249.250 --------------------> 10.0.0.2 (remote machine) (gateway) | (LAN) -----------------> 10.0.0.10 | -----------------> 10.0.0.15 I have tried this: in /etc/rc.conf: natd_enable="YES" natd_interface="ed0" # outside interface natd_flags="-f /etc/natd.conf" and in /etc/natd.conf: dynamic yes redirect_port tcp 10.0.0.2:22 22002 redirect_port tcp 10.0.0.10:22 22010 redirect_port tcp 10.0.0.15:22 22015 Near the top of /etc/firewall.conf I have: $fwcmd $flags add divert natd all from any to any via $oif Connecting to the gateway on port 22 works fine, but all other connections (22002, 22010, 22015) time out. I have the proper keys in the proper places and the hosts files are OK. I appreciate any help. Please cc me, as this address is not subscribed to the list. Thanks! -- Best Regards, Joshua Lokken OMIC Portland Branch inspector.us@omicnet.com 503 807 6538 -------------------------> To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-questions" in the body of the message