/* HINT: Search archives @ http://www.indyramp.com/masq/ before posting! /* ALSO: Don't quote this header. It makes you look lame :-) */ Hi! I'm trying to forward incoming ssh connection to my local interface on my firewall. (I have a dynamic ip on my internet iface so it isn't that funny to reconfigure ssh every time i get a new IP) But I can't get the portforwarding to work :( I've the following configuration: Local Net Firewall Internet 192.168.0.0/24---------eth0: 192.168.0.1 eth1: dynIP (dhcp)---------> My firewall is a PII 266 running Debian2.2, kernel 2.2.17. (ssh is listening to 192.168.0.1 port 22) My ipchains settings are: ipchains -P forward DENY ipchains -A forward -s 192.168.0.1 -j MASQ ipchains -A forward -s 192.168.0.2 -j MASQ (It's only three hosts that ipchains -A forward -s 192.168.0.3 -j MASQ are allowed to access internet) ipchains -A input -p tcp -y -i eth1 -d dynIP ssh -m 1 ipmasqadm mfw -A -m 1 -r 192.168.0.1 ssh When i try to connect to dynIP:22 from the outside I got the following message in my syslog: Dec 13 03:04:57 wopr kernel: ip_input(): demasq recursion detected. Check masq modules configuration What does it mean? Can anyone tell me what's wrong in my configuration? Best Regards Per Kauffeldt _______________________________________________ Masq maillist - [EMAIL PROTECTED] Admin requests can be handled at http://www.indyramp.com/masq-list/ -- THIS INCLUDES UNSUBSCRIBING! or email to [EMAIL PROTECTED] PLEASE read the HOWTO and search the archives before posting. You can start your search at http://www.indyramp.com/masq/ Please keep general linux/unix/pc/internet questions off the list.
