ipnat.conf - map and rdr won't work!

alexus alexus at gmail.com
Thu Jul 15 02:32:49 UTC 2010

I can't put my mind around it, before reboot I was able to ssh in from
outside to my jail and right now I can't!
I even rebuild the whole system and even that didn't help:(
anyone have any ideas?

su-3.2# cat /etc/ipnat.rules
map fxp0 lama -> 0/32
rdr fxp0 port ssh -> lama port ssh tcp
su-3.2# grep lama /etc/hosts		lama
su-3.2# ipnat -l
List of active MAP/Redirect filters:
map fxp0 ->
rdr fxp0 port 22 -> port 22 tcp

List of active sessions:
su-3.2# ifconfig
0 mtu 1500
	ether 00:19:5b:68:9b:01
	inet netmask 0xffffffff broadcast
	media: Ethernet autoselect (none)
	status: no carrier
fxp0: flags=8843<UP,BROADCAST,RUNNING,SIMPLEX,MULTICAST> metric 0 mtu 1500
	ether 00:0f:fe:aa:f4:61
	inet netmask 0xffffffe0 broadcast
	media: Ethernet autoselect (100baseTX <full-duplex>)
	status: active
plip0: flags=108810<POINTOPOINT,SIMPLEX,MULTICAST,NEEDSGIANT> metric 0 mtu 1500
lo0: flags=8049<UP,LOOPBACK,RUNNING,MULTICAST> metric 0 mtu 16384
	inet6 fe80::1%lo0 prefixlen 64 scopeid 0x4
	inet6 ::1 prefixlen 128
	inet netmask 0xff000000
su-3.2# jls
   JID  IP Address      Hostname                      Path
     1   lama                          /usr/jail/lama
su-3.2# grep ^ipnat_enable /etc/rc.conf
su-3.2# grep ^gateway_enable /etc/rc.conf
su-3.2# sysctl net.inet.ip.forwarding
net.inet.ip.forwarding: 1

and this is me from outside trying to ssh to my box and getting time out...

mp:~ alexus$ ssh -v jothost.com
OpenSSH_5.2p1, OpenSSL 0.9.8l 5 Nov 2009
debug1: Reading configuration data /etc/ssh_config
debug1: Connecting to jothost.com [] port 22.
debug1: connect to address port 22: Operation timed out
ssh: connect to host jothost.com port 22: Operation timed out
mp:~ alexus$


More information about the freebsd-questions mailing list