From mboxrd@z Thu Jan 1 00:00:00 1970 From: Real Cucumber Subject: Re: SSH Connections Lost After 1 minute idle Date: Tue, 13 Jul 2004 15:48:48 -0700 (PDT) Sender: netfilter-admin@lists.netfilter.org Message-ID: <20040713224848.99030.qmail@web40708.mail.yahoo.com> References: <200407132335.18494.Antony@Soft-Solutions.co.uk> Mime-Version: 1.0 Return-path: In-Reply-To: <200407132335.18494.Antony@Soft-Solutions.co.uk> Errors-To: netfilter-admin@lists.netfilter.org List-Help: List-Post: List-Subscribe: , List-Id: List-Unsubscribe: , List-Archive: Content-Type: text/plain; charset="us-ascii" Content-Transfer-Encoding: 7bit To: netfilter@lists.netfilter.org I'm using it for port remapping/forwarding of inbound tcp packets on port XXXX forwarded to internal server and remapped to internal port XXXX as follows: -------- iptables -t nat -A PREROUTING -p tcp --dport $WAN_SSH_PORT -i $WAN_INTERFACE -j DNAT --to $INTERNAL_SERVER_IP:$INTERNAL_SERVER_SSH_PORT ---------- --- Antony Stone wrote: > On Tuesday 13 July 2004 11:25 pm, Real Cucumber > wrote: > > > Basically I've created a port forwarding firewall > with > > two network interfaces, that's sole purpose is to > > forward incoming SSH packets on one interface > (WAN) > > through the other interface (LAN) to a local SSH > > server. > > > > I've done this using IPtables and the mangle > table. > > Please explain how you have used the mangle table to > achieve this. > > The use of the mangle table is for a few fairly > restricted and generally > esoteric purposes, and I cannot see that your > situation falls into these > categories. > > Regards, > > Antony. > > -- > What makes you think I know what I'm talking about? > I just have more O'Reilly books than most people. > > > Please reply to the list; > > please don't CC me. > > > __________________________________ Do you Yahoo!? New and Improved Yahoo! Mail - 100MB free storage! http://promotions.yahoo.com/new_mail