Bradford Fisher wrote:
# Rules # # Inbound Traffic
hi brad, we need a little more to go on. - when you say "tunnel in", is the ssh server running on the ipf firewall box or is it on a box behind the ipf firewall? - does the rule number in iplog match up with the rules above? - does the ssh rule work standalone, i.e. with no group? - have you got any tcpdump/snoop output on the connection attempt? you need to post the complete contents of ipf.conf and ipnat.conf, along with some info on your network config. otherwise this is just a guessing game. put it all in one text file, run sed across it to obfuscate your actual IP's, and post it. e.g, say your ip is 123.45.67.89... $ cat yourdata.txt | sed s/"123.45"/"X.Y"/g > yourdata2.txt jim ps also see http://www.phildev.net/ipf/IPFmail.html#mail3
