it does work 100%. I a long list of rules in that box's firewall there was already something for those ports. My bad I did miss those.
On 25/09/16 12:51, Patrick Boutilier wrote: > On 09/25/2016 06:02 AM, lejeczek wrote: >> >> >> On 23/09/16 00:13, Patrick Boutilier wrote: >>> On 09/22/2016 04:12 PM, lejeczek wrote: >>>> is this possible? >>> >>> Yes. >>> >>>> >>>> forwarding 5900 port both for upd & tcp does not do the >>>> trick. >>>> >>> >>> Only need TCP. Ports 5900, and 5901. >>> >>> >> I now have both ports, also just in case both TCP & udp - >> it does not work. >> I take pick with nmap - says port is closed, so opened, >> no filtering, >> good, but nothing is listening. >> I deployed these rule: >> >> -A PREROUTING -s remote.public.IP.x -d >> firewall.public.IP.x -i em3 -p >> TCP -m multiport --dports 5900 -j DNAT --to-destination >> 192.168.2.30:5900 >> >> for both ports & protocols. I also, naturally, forward >> 443 for https. >> I even check if nating on my remote.public.IP might help, >> similar rules, >> but it did not. > > > Is it being blocked in FORWARD ? You might also need > something like: > > > -I FORWARD -p tcp -m multiport -s remote.public.IP.x -d > 192.168.2.30 --dports 443,5900,5901 -j ACCEPT > > > If that still doesn't work tcpdump the traffic when you > try to connect and see if traffic is travelling both ways. > > > > >> >>> >>>> would you know what NAT has to take care of in order to >>>> get >>>> me to my iDrac6? >>>> >>>> many thanks >>>> >>>> _______________________________________________ >>>> Linux-PowerEdge mailing list >>>> [email protected] >>>> https://lists.us.dell.com/mailman/listinfo/linux-poweredge >>>> >>> >>> >>> >>> _______________________________________________ >>> Linux-PowerEdge mailing list >>> [email protected] >>> https://lists.us.dell.com/mailman/listinfo/linux-poweredge >> > _______________________________________________ Linux-PowerEdge mailing list [email protected] https://lists.us.dell.com/mailman/listinfo/linux-poweredge
