problem with ssh connetions in jail

Tyler T espartano.list at gmail.com
Tue Oct 4 21:09:43 PDT 2005


> hi people first sorry for my english.
>
> i have a pc with only one etternet card connected to a router
> (172.16.0.1) which provide both internet connection and dhcp service,
> in this machine i have configured a jail virtual server, the ip of the
> real server is 172.16.1.36/16 and i have made a ip alias for the jail
> virtual server which is 172.16.1.100/32, i want that the virtual
> server respond all incoming connections from internet, i have
> configured natd with next option in /etc/rc.natd:
>
> redirect_port  tcp  172.16.1.100:22   22
>
>
> in /etc/firewall.rules:
>
> add divert natd all from any to any via rl0
>
>
> in /etc/rc.conf:
>
> natd_enable="YES"
> natd_interface="rl0"
> natd_flags="-l -f /etc/rc.natd"
>
> firewall_enable="YES"
> firewall_type="/etc/firewall.rules"
> firewall_script="/etc/rc.firewall"
>
> in the sshd of jail:
>
> KeepAlive yes
> UseDNS no
>
> my firewall is IPFW2, the configuration works well however often the
> conections is reset, i don't know what happen
>
> a scheme of my lan:
>
>                              172.16.0.1/16
>     real ip  172.16.1.36/16
>
> INTERNET----------modem/router-------------------------  PC with run jail
>
>
>              alias ip  172.16.1.100/32
>
>
> any help is thank in avantage.
>

the solution:

in /etc/ssh/sshd_config   add following line:

VerifyReverseMapping no


thanks for all :)


More information about the freebsd-questions mailing list