From owner-freebsd-ipfw Thu Sep 6 11: 1:26 2001 Delivered-To: freebsd-ipfw@freebsd.org Received: from db.nexgen.com (db.nexgen.com [66.92.98.149]) by hub.freebsd.org (Postfix) with SMTP id B6FD237B407 for ; Thu, 6 Sep 2001 11:01:22 -0700 (PDT) Received: (qmail 5670 invoked from network); 6 Sep 2001 18:00:45 -0000 Received: from localhost.nexgen.com (HELO alexus) (root@127.0.0.1) by localhost.nexgen.com with SMTP; 6 Sep 2001 18:00:45 -0000 Message-ID: <007a01c136fd$eab7e2b0$0d00a8c0@alexus> From: "alexus" To: References: <005501c136fc$73e8f530$0d00a8c0@alexus> <20010906205502.B72023@sunbay.com> Subject: Re: ipfw w/ port routing form telnet port to ssh Date: Thu, 6 Sep 2001 14:01:13 -0400 Organization: NexGen MIME-Version: 1.0 Content-Type: text/plain; charset="iso-8859-1" Content-Transfer-Encoding: 7bit X-Priority: 3 X-MSMail-Priority: Normal X-Mailer: Microsoft Outlook Express 6.00.2600.0000 X-MimeOLE: Produced By Microsoft MimeOLE V6.00.2600.0000 Sender: owner-freebsd-ipfw@FreeBSD.ORG Precedence: bulk List-ID: List-Archive: (Web Archive) List-Help: (List Instructions) List-Subscribe: List-Unsubscribe: X-Loop: FreeBSD.ORG would you care to share?:) please? thank you in advance ----- Original Message ----- From: "Ruslan Ermilov" To: "alexus" Cc: Sent: Thursday, September 06, 2001 1:55 PM Subject: Re: ipfw w/ port routing form telnet port to ssh > On Thu, Sep 06, 2001 at 01:50:44PM -0400, alexus wrote: > > hi > > > > i'm trying to secure my box as much as i can, but i've been told that it's > > not a very good idea to leave telnet open, i understand this is transmit > > text it clear text, but one of my user can't use port 22 due to his behind > > firewall, my question is: > > > > is it possible to make ipfw to transfer all data between ports on same ip? > > but i want that rule to be applyed for one ip only > > > > basically what i want to accomplished with this is whenever he'll telnet to > > my box he'll route to port 22, even though he'll still be connected to port > > 23, i'll just tell him to use ssh client instead > > > This could be done in a number of different ways. > With ipfw(8)'s `fwd' option, or with natd(8). > > > Cheers, > -- > Ruslan Ermilov Oracle Developer/DBA, > ru@sunbay.com Sunbay Software AG, > ru@FreeBSD.org FreeBSD committer, > +380.652.512.251 Simferopol, Ukraine > > http://www.FreeBSD.org The Power To Serve > http://www.oracle.com Enabling The Information Age > To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-ipfw" in the body of the message