From owner-freebsd-questions@FreeBSD.ORG  Thu Jul 15 19:17:03 2010
Return-Path: <owner-freebsd-questions@FreeBSD.ORG>
Delivered-To: freebsd-questions@freebsd.org
Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2001:4f8:fff6::34])
	by hub.freebsd.org (Postfix) with ESMTP id E8B17106578D
	for <freebsd-questions@freebsd.org>;
	Thu, 15 Jul 2010 19:17:02 +0000 (UTC)
	(envelope-from alexus@gmail.com)
Received: from mail-gx0-f182.google.com (mail-gx0-f182.google.com
	[209.85.161.182])
	by mx1.freebsd.org (Postfix) with ESMTP id 9AF0E8FC17
	for <freebsd-questions@freebsd.org>;
	Thu, 15 Jul 2010 19:17:02 +0000 (UTC)
Received: by gxk24 with SMTP id 24so1029604gxk.13
	for <freebsd-questions@freebsd.org>;
	Thu, 15 Jul 2010 12:17:01 -0700 (PDT)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=gmail.com; s=gamma;
	h=domainkey-signature:mime-version:received:received:reply-to
	:in-reply-to:references:date:message-id:subject:from:to:content-type
	:content-transfer-encoding;
	bh=PHqnSgFhLYiE1YxLLWB++a5LwjO8b8ggbSq8Mjjvbbc=;
	b=mIHau/uSV1hXD0Ndw5Giom0pTIf8PuPXk7bY8326fMwEvAjt+4SGRvhM2/mmYYoi22
	IKVyP7+F4F4SPxXivHieBT7Ag8ZpZ6/m98FVYxoTNLblWzr+slgB85QKuYxhwxxl2Joy
	TkR+Hde/DhqoUYmsiRMYNfKdayXnngqsUeAUo=
DomainKey-Signature: a=rsa-sha1; c=nofws; d=gmail.com; s=gamma;
	h=mime-version:reply-to:in-reply-to:references:date:message-id
	:subject:from:to:content-type:content-transfer-encoding;
	b=D6vnD0kcDuRw/Y2NZboUApopEC4DXdGJZZri+QRbMYUUXQfUAvIgrvbc9JboVPvxFC
	1mRQxzM2LmTc4awEd3PEqW720qw1vpfO5kDE2dot9WsJ1XS+XwyfuIKs1ILUiemLtmJF
	pT/ixnlRXGPdzoetrya4VR8MKCeDLNWYSZFVI=
MIME-Version: 1.0
Received: by 10.150.69.20 with SMTP id r20mr277718yba.304.1279221421066; Thu, 
	15 Jul 2010 12:17:01 -0700 (PDT)
Received: by 10.150.53.5 with HTTP; Thu, 15 Jul 2010 12:17:01 -0700 (PDT)
In-Reply-To: <AANLkTilVTo36Fzdh2DKAQhRjyDj8MNUuV9dhwvQ7Gf-V@mail.gmail.com>
References: <AANLkTilVTo36Fzdh2DKAQhRjyDj8MNUuV9dhwvQ7Gf-V@mail.gmail.com>
Date: Thu, 15 Jul 2010 15:17:01 -0400
Message-ID: <AANLkTinh0CykJ1Av3f2THPDFOLS0YtYLDvRMHXm_wD3w@mail.gmail.com>
From: alexus <alexus@gmail.com>
To: freebsd-questions@freebsd.org
Content-Type: text/plain; charset=UTF-8
Content-Transfer-Encoding: quoted-printable
Subject: Re: ipnat.conf - map and rdr won't work!
X-BeenThere: freebsd-questions@freebsd.org
X-Mailman-Version: 2.1.5
Precedence: list
Reply-To: google@alexus.org
List-Id: User questions <freebsd-questions.freebsd.org>
List-Unsubscribe: <http://lists.freebsd.org/mailman/listinfo/freebsd-questions>, 
	<mailto:freebsd-questions-request@freebsd.org?subject=unsubscribe>
List-Archive: <http://lists.freebsd.org/pipermail/freebsd-questions>
List-Post: <mailto:freebsd-questions@freebsd.org>
List-Help: <mailto:freebsd-questions-request@freebsd.org?subject=help>
List-Subscribe: <http://lists.freebsd.org/mailman/listinfo/freebsd-questions>, 
	<mailto:freebsd-questions-request@freebsd.org?subject=subscribe>
X-List-Received-Date: Thu, 15 Jul 2010 19:17:03 -0000

On Wed, Jul 14, 2010 at 10:32 PM, alexus <alexus@gmail.com> wrote:
> I can't put my mind around it, before reboot I was able to ssh in from
> outside to my jail and right now I can't!
> I even rebuild the whole system and even that didn't help:(
> anyone have any ideas?
>
> su-3.2# cat /etc/ipnat.rules
> map fxp0 lama -> 0/32
> rdr fxp0 64.52.58.58 port ssh -> lama port ssh tcp
> su-3.2# grep lama /etc/hosts
> 172.16.172.16 =C2=A0 =C2=A0 =C2=A0 =C2=A0 =C2=A0 lama
> su-3.2# ipnat -l
> List of active MAP/Redirect filters:
> map fxp0 172.16.172.16/32 -> 0.0.0.0/32
> rdr fxp0 64.52.58.58/32 port 22 -> 172.16.172.16 port 22 tcp
>
> List of active sessions:
> su-3.2# ifconfig
> vr0: flags=3D8943<UP,BROADCAST,RUNNING,PROMISC,SIMPLEX,MULTICAST> metric
> 0 mtu 1500
> =C2=A0 =C2=A0 =C2=A0 =C2=A0options=3D2808<VLAN_MTU,WOL_UCAST,WOL_MAGIC>
> =C2=A0 =C2=A0 =C2=A0 =C2=A0ether 00:19:5b:68:9b:01
> =C2=A0 =C2=A0 =C2=A0 =C2=A0inet 172.16.172.16 netmask 0xffffffff broadcas=
t 172.16.172.16
> =C2=A0 =C2=A0 =C2=A0 =C2=A0media: Ethernet autoselect (none)
> =C2=A0 =C2=A0 =C2=A0 =C2=A0status: no carrier
> fxp0: flags=3D8843<UP,BROADCAST,RUNNING,SIMPLEX,MULTICAST> metric 0 mtu 1=
500
> =C2=A0 =C2=A0 =C2=A0 =C2=A0options=3D2009<RXCSUM,VLAN_MTU,WOL_MAGIC>
> =C2=A0 =C2=A0 =C2=A0 =C2=A0ether 00:0f:fe:aa:f4:61
> =C2=A0 =C2=A0 =C2=A0 =C2=A0inet 64.52.58.58 netmask 0xffffffe0 broadcast =
64.52.58.63
> =C2=A0 =C2=A0 =C2=A0 =C2=A0media: Ethernet autoselect (100baseTX <full-du=
plex>)
> =C2=A0 =C2=A0 =C2=A0 =C2=A0status: active
> plip0: flags=3D108810<POINTOPOINT,SIMPLEX,MULTICAST,NEEDSGIANT> metric 0 =
mtu 1500
> lo0: flags=3D8049<UP,LOOPBACK,RUNNING,MULTICAST> metric 0 mtu 16384
> =C2=A0 =C2=A0 =C2=A0 =C2=A0inet6 fe80::1%lo0 prefixlen 64 scopeid 0x4
> =C2=A0 =C2=A0 =C2=A0 =C2=A0inet6 ::1 prefixlen 128
> =C2=A0 =C2=A0 =C2=A0 =C2=A0inet 127.0.0.1 netmask 0xff000000
> su-3.2# jls
> =C2=A0 JID =C2=A0IP Address =C2=A0 =C2=A0 =C2=A0Hostname =C2=A0 =C2=A0 =
=C2=A0 =C2=A0 =C2=A0 =C2=A0 =C2=A0 =C2=A0 =C2=A0 =C2=A0 =C2=A0Path
> =C2=A0 =C2=A0 1 =C2=A0172.16.172.16 =C2=A0 lama =C2=A0 =C2=A0 =C2=A0 =C2=
=A0 =C2=A0 =C2=A0 =C2=A0 =C2=A0 =C2=A0 =C2=A0 =C2=A0 =C2=A0 =C2=A0/usr/jail=
/lama
> su-3.2# grep ^ipnat_enable /etc/rc.conf
> ipnat_enable=3D"YES"
> su-3.2# grep ^gateway_enable /etc/rc.conf
> gateway_enable=3D"YES"
> su-3.2# sysctl net.inet.ip.forwarding
> net.inet.ip.forwarding: 1
> su-3.2#
>
> and this is me from outside trying to ssh to my box and getting time out.=
..
>
> mp:~ alexus$ ssh -v jothost.com
> OpenSSH_5.2p1, OpenSSL 0.9.8l 5 Nov 2009
> debug1: Reading configuration data /etc/ssh_config
> debug1: Connecting to jothost.com [64.52.58.58] port 22.
> debug1: connect to address 64.52.58.58 port 22: Operation timed out
> ssh: connect to host jothost.com port 22: Operation timed out
> mp:~ alexus$
>
>
> --
> http://alexus.org/
>

anyone?

--=20
http://alexus.org/