forwarding ssh requests
David A. Sinck
plug-discuss@lists.plug.phoenix.az.us
Tue, 20 May 2003 12:15:11 -0700
\_ SMTP quoth Thomas Cameron on 5/20/2003 14:06 as having spake thusly:
\_
\_ That's what I was going to answer, but I am not getting it to work...
\_
\_ [root@mailtest1 root]# iptables -t nat -A PREROUTING -p tcp -d
\_ 127.0.0.1 --dport 3022 -j DNAT --to-destination 127.0.0.1:22
\_ [root@mailtest1 root]# ssh 127.0.0.1 -p 3022
\_ ssh: connect to host 127.0.0.1 port 3022: Connection refused
\_
\_ I have tried to DNAT to a local address as well as another address with the
\_ same results.
\_
\_ What gives?
I'm going to kneejerk that it's some evil local interface problem. I
know that rule works because it's firing successfully after a few IP
substitutions. The rule above also faults for me.
\_ > /sbin/iptables -t nat -A PREROUTING -p tcp -m tcp --dport 3022 \
\_ > -j DNAT --to-destination 192.168.0.10:22
David