ipnat.conf - map and rdr won't work!

alexus alexus at gmail.com
Thu Jul 15 19:17:03 UTC 2010


On Wed, Jul 14, 2010 at 10:32 PM, alexus <alexus at gmail.com> wrote:
> I can't put my mind around it, before reboot I was able to ssh in from
> outside to my jail and right now I can't!
> I even rebuild the whole system and even that didn't help:(
> anyone have any ideas?
>
> su-3.2# cat /etc/ipnat.rules
> map fxp0 lama -> 0/32
> rdr fxp0 64.52.58.58 port ssh -> lama port ssh tcp
> su-3.2# grep lama /etc/hosts
> 172.16.172.16           lama
> su-3.2# ipnat -l
> List of active MAP/Redirect filters:
> map fxp0 172.16.172.16/32 -> 0.0.0.0/32
> rdr fxp0 64.52.58.58/32 port 22 -> 172.16.172.16 port 22 tcp
>
> List of active sessions:
> su-3.2# ifconfig
> vr0: flags=8943<UP,BROADCAST,RUNNING,PROMISC,SIMPLEX,MULTICAST> metric
> 0 mtu 1500
>        options=2808<VLAN_MTU,WOL_UCAST,WOL_MAGIC>
>        ether 00:19:5b:68:9b:01
>        inet 172.16.172.16 netmask 0xffffffff broadcast 172.16.172.16
>        media: Ethernet autoselect (none)
>        status: no carrier
> fxp0: flags=8843<UP,BROADCAST,RUNNING,SIMPLEX,MULTICAST> metric 0 mtu 1500
>        options=2009<RXCSUM,VLAN_MTU,WOL_MAGIC>
>        ether 00:0f:fe:aa:f4:61
>        inet 64.52.58.58 netmask 0xffffffe0 broadcast 64.52.58.63
>        media: Ethernet autoselect (100baseTX <full-duplex>)
>        status: active
> plip0: flags=108810<POINTOPOINT,SIMPLEX,MULTICAST,NEEDSGIANT> metric 0 mtu 1500
> lo0: flags=8049<UP,LOOPBACK,RUNNING,MULTICAST> metric 0 mtu 16384
>        inet6 fe80::1%lo0 prefixlen 64 scopeid 0x4
>        inet6 ::1 prefixlen 128
>        inet 127.0.0.1 netmask 0xff000000
> su-3.2# jls
>   JID  IP Address      Hostname                      Path
>     1  172.16.172.16   lama                          /usr/jail/lama
> su-3.2# grep ^ipnat_enable /etc/rc.conf
> ipnat_enable="YES"
> su-3.2# grep ^gateway_enable /etc/rc.conf
> gateway_enable="YES"
> su-3.2# sysctl net.inet.ip.forwarding
> net.inet.ip.forwarding: 1
> su-3.2#
>
> and this is me from outside trying to ssh to my box and getting time out...
>
> mp:~ alexus$ ssh -v jothost.com
> OpenSSH_5.2p1, OpenSSL 0.9.8l 5 Nov 2009
> debug1: Reading configuration data /etc/ssh_config
> debug1: Connecting to jothost.com [64.52.58.58] port 22.
> debug1: connect to address 64.52.58.58 port 22: Operation timed out
> ssh: connect to host jothost.com port 22: Operation timed out
> mp:~ alexus$
>
>
> --
> http://alexus.org/
>

anyone?

-- 
http://alexus.org/


More information about the freebsd-questions mailing list