Skip site navigation (1)Skip section navigation (2)
Date:      Thu, 6 Sep 2001 20:55:02 +0300
From:      Ruslan Ermilov <ru@FreeBSD.ORG>
To:        alexus <ml@db.nexgen.com>
Cc:        freebsd-ipfw@FreeBSD.ORG
Subject:   Re: ipfw w/ port routing form telnet port to ssh
Message-ID:  <20010906205502.B72023@sunbay.com>
In-Reply-To: <005501c136fc$73e8f530$0d00a8c0@alexus>; from ml@db.nexgen.com on Thu, Sep 06, 2001 at 01:50:44PM -0400
References:  <005501c136fc$73e8f530$0d00a8c0@alexus>

Next in thread | Previous in thread | Raw E-Mail | Index | Archive | Help
On Thu, Sep 06, 2001 at 01:50:44PM -0400, alexus wrote:
> hi
> 
> i'm trying to secure my box as much as i can, but i've been told that it's
> not a very good idea to leave telnet open, i understand this is transmit
> text it clear text, but one of my user can't use port 22 due to his behind
> firewall, my question is:
> 
> is it possible to make ipfw to transfer all data between ports on same ip?
> but i want that rule to be applyed for one ip only
> 
> basically what i want to accomplished with this is whenever he'll telnet to
> my box he'll route to port 22, even though he'll still be connected to port
> 23, i'll just tell him to use ssh client instead
> 
This could be done in a number of different ways.
With ipfw(8)'s `fwd' option, or with natd(8).


Cheers,
-- 
Ruslan Ermilov		Oracle Developer/DBA,
ru@sunbay.com		Sunbay Software AG,
ru@FreeBSD.org		FreeBSD committer,
+380.652.512.251	Simferopol, Ukraine

http://www.FreeBSD.org	The Power To Serve
http://www.oracle.com	Enabling The Information Age

To Unsubscribe: send mail to majordomo@FreeBSD.org
with "unsubscribe freebsd-ipfw" in the body of the message




Want to link to this message? Use this URL: <http://docs.FreeBSD.org/cgi/mid.cgi?20010906205502.B72023>