1. NAT rule should read
SrcHost public_ip SSH --> Original Internal_ip Original
2. You must have a rule that accept SSH connection to both your public and
internal IP from SrcHost.
BTW : a little extract from your log may help!
On Tue, 28 Sep 2004, Chanoine wrote:
Hello,
I have a little problem configuring a one to one communication on a
specific port through my checkpoint NG r55.
I have a server on my LAN that must accept incoming SSH communication so
I specified my rules like this :
Distant host -> ssh_server -> tcp 22 -> accept
And NAT (static) :
Orig Src Orig Dst Service Xlate Src Xlate Dst
Service
Distant host public_IP SSH distant_host ssh_srv
SSH
But it fails.
What's wrong?
Thanks for your help.
Yannick
=================================================
To set vacation, Out-Of-Office, or away messages,
send an email to LISTSERV AT amadeus.us.checkpoint DOT com
in the BODY of the email add:
set fw-1-mailinglist nomail
=================================================
To unsubscribe from this mailing list,
please see the instructions at
http://www.checkpoint.com/services/mailing.html
=================================================
If you have any questions on how to change your
subscription options, email
fw-1-owner AT ts.checkpoint DOT com
=================================================
----------
Jean-Francois Gobin - Administrateur gobinjf.be
http://www.gobinjf.be mailto:gobin AT gobinjf DOT be
=================================================
To set vacation, Out-Of-Office, or away messages,
send an email to LISTSERV AT amadeus.us.checkpoint DOT com
in the BODY of the email add:
set fw-1-mailinglist nomail
=================================================
To unsubscribe from this mailing list,
please see the instructions at
http://www.checkpoint.com/services/mailing.html
=================================================
If you have any questions on how to change your
subscription options, email
fw-1-owner AT ts.checkpoint DOT com
=================================================
|
