Re: sample/proxy.c
This is a discussion on Re: sample/proxy.c within the IPFilter forums, part of the System Security and Security Related category; > "rdr e1000g0 0.0.0.0/0 port 7100 -> 172.20.11.254 port 1 tcp" ... &...
|
|||||||
| FAQ | Members List | Calendar | Search | Today's Posts | Mark Forums Read |
05-19-2006
|
|||
|
|||
Re: sample/proxy.c
> "rdr e1000g0 0.0.0.0/0 port 7100 -> 172.20.11.254 port 1 tcp"
... > If I telnet directly to 7100 (by disabling RDR): > > # telnet 210.172.133.140 7100 > OK Hello 210.my.ext.IP:62282 - you are connected to 210.172.133.140:7100 > > If I connect from an external host, with RDR back in: > # telnet 210.172.133.140 7100 > local IP# to use: 210.172.133.140 > local port# to use: 39431 > remote end for connection: 210.172.133.140,7100 > OK Hello 210.172.133.140:39431 - you are connected to 210.172.133.140:7100 > > The only "ipnat -l" entry I get during that time is: > > RDR 172.20.11.254 1 <- -> 210.172.133.140 7100 [210.my.ext.IP 62292] Something seems wrong here. For this to work, you should have: box]A-----B[gateway]C----D[dest A = 210.my.ext.IP B = 172.20.11.254 C = ??? D = 210.172.133.140 To me it appears that "C" is 210.172.133.140. If that is the case, this is not going to work how you expect. What does "netstat -a" show ? This is IPFilter...v-what? Darren 
|
Linear Mode
