ipfw+nat

hi all!

i'd like to ask for your help, because i didn't find anything related about this topic..
i have a box, with public ip, which is connected to other clients through openvpn (10.254.0.x)
i'd like to connect to the openvpn client's port (for example ssh)
through a public address port (x.x.x.x 16354)

unfortunately i totally failed in this, can't even forward to my boxes openvpn address..

tried this:
$cmd 00701 fwd 10.254.0.1,22 tcp from any to x.x.x.x 16354

no result, connection refused..
it works well with datapipe, however i don't want to set up dozens of datapipes :)

natd is enabled, do i need it? or ipfw divert?
i have the following related in kernel conf:

options         IPFIREWALL
options         IPFIREWALL_VERBOSE
options         IPFIREWALL_VERBOSE_LIMIT=5
options         IPFIREWALL_DEFAULT_TO_ACCEPT
options         IPFIREWALL_FORWARD

do i need anything else?
thx for all your help and merry christmas! 

_______________________________________________
freebsd-hackers@xxxxxxxxxxx mailing list
http://lists.freebsd.org/mailman/listinfo/freebsd-hackers
To unsubscribe, send any mail to "freebsd-hackers-unsubscribe@xxxxxxxxxxx"

Relevant Pages

  • Re: Remote Desktop over OpenVPN from standby fails
    ... The problem seems to be that the Remote Desktop Connection server doesn't ... Go to another PC and wake my Office PC ... But RDC fails! ... > using OpenVPN to connect from home. ...
    (microsoft.public.isa.vpn)
  • Re: Remote Desktop over OpenVPN from standby fails
    ... The problem seems to be that the Remote Desktop Connection server doesn't ... Go to another PC and wake my Office PC ... But RDC fails! ... > using OpenVPN to connect from home. ...
    (microsoft.public.windowsxp.work_remotely)
  • Re: ipfw+nat
    ... after i can't get it work with ipfw i tried ipnat.. ... i have a box, with public ip, which is connected to other clients through openvpn ... i'd like to connect to the openvpn client's port ... no result, connection refused.. ...
    (freebsd-hackers)
  • Re: [opensuse] user-level GUI for openVPN
    ... connection more convenient for the students in my lab. ... openVPN connection without requiring root password? ... Then make a desktop link to a short script and make sure you check ... Put your config file in /etc/openvpn/ and it will be used by the init ...
    (SuSE)
  • Re: [opensuse] user-level GUI for openVPN
    ... connection more convenient for the students in my lab. ... openVPN connection without requiring root password? ... VPNusers ALL /usr/sbin/rcopenvpn ... Put your config file in /etc/openvpn/ and it will be used by the init script. ...
    (SuSE)