From owner-freebsd-questions Thu Feb 17 14:20:22 2000 Delivered-To: freebsd-questions@freebsd.org Received: from mail.nerv.nu (cx639627-c.irvn1.occa.home.com [24.0.209.134]) by hub.freebsd.org (Postfix) with ESMTP id 381B937B844 for ; Thu, 17 Feb 2000 14:20:18 -0800 (PST) (envelope-from nugundam@nerv.nu) Received: (from nugundam@localhost) by mail.nerv.nu (8.9.3/8.9.3) id OAA43556; Thu, 17 Feb 2000 14:20:16 -0800 (PST) (envelope-from nugundam) Date: Thu, 17 Feb 2000 14:20:15 -0800 From: "Joseph T. Lee" To: Brent Kearney Cc: FreeBSD Questions Subject: Re: Natd, ipfw, & redirect_port Message-ID: <20000217142015.A43533@greenwood3.nerv.nu> References: <20000214130326.A6743@kearneys.ca> Mime-Version: 1.0 Content-Type: text/plain; charset=us-ascii X-Mailer: Mutt 0.95.6i In-Reply-To: <20000214130326.A6743@kearneys.ca>; from Brent Kearney on Mon, Feb 14, 2000 at 01:03:26PM -0800 Sender: owner-freebsd-questions@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.ORG On Mon, Feb 14, 2000 at 01:03:26PM -0800, Brent Kearney wrote: > Allow connections to port 2200 for ssh access to Plato > $fwcmd add pass tcp from any to any 2200 setup > $fwcmd add pass udp from any to any 2200 You need: $fwcmd add pass tcp from any to Plato 22 setup To help you debug your firewall rules, add a: $fwcmd add 65000 pass log ip from any to any This will dump packet attempts to screen/file so you can tell what the IPs are when you try to ssh through the NAT. Joseph nugundam =best=com==/==\=IIGS=/==\=Playstation=/==\=Civic HX CVT=/==\ # Anime Expo 2000 >> www.anime-expo.org/ > # FreeBSD: The Power to Serve >> www.freebsd.org > # The Ultimate Online Speed-Shop >> www.racesearch.com / To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-questions" in the body of the message