DaemonForums  

Go Back   DaemonForums > OpenBSD > OpenBSD Security

OpenBSD Security Functionally paranoid!

 
 
Thread Tools Display Modes
Prev Previous Post   Next Post Next
  #1   (View Single Post)  
Old 29th November 2008
gyosl gyosl is offline
New User
 
Join Date: Nov 2008
Posts: 3
Thanked 0 Times in 0 Posts
Default SSH VNC behind pf/nat

Another newbie question. I have setup my xp with OpenSSH and VNC server. Everything works fine with SSH tunneling.
Laptop -> Internet -> xp

When I hooked up my gateway machine(OpenBSD) to xp, SSH tunneling turned broken.
Laptop -> Internet -> OpenBSD -> xp

I am wondering whether I have misconfigured the pf rules. I SSH the xp machine from Laptop without problems, but when I run VNC viewer from Laptop, connect to:127.0.0.1, it said "Connection established", and then right after it, it said, "Connection Closed".

Below is part of my pf.conf.

rdr on $ext_if proto tcp from any to any port 22 tag SSH -> 10.0.0.7 port 22

## loopback on internal interface $int_if
rdr on $int_if proto tcp from any to any port 5900 tag VNC -> 10.0.0.7 port 5900
rdr on $int_if proto tcp from 10.0.0.7 to any port 5900 -> 10.0.0.7 port 5900

pass in quick on $ext_if tagged SSH
pass in quick on $int_if

pass out quick on $int_if tagged SSH
pass out quick on $int_if tagged VNC
pass out keep state
Reply With Quote
 

Thread Tools
Display Modes

Posting Rules
You may not post new threads
You may not post replies
You may not post attachments
You may not edit your posts

BB code is On
Smilies are On
[IMG] code is On
HTML code is Off

Forum Jump


All times are GMT. The time now is 06:32 PM.


Powered by vBulletin® Version 3.8.4
Copyright ©2000 - 2014, Jelsoft Enterprises Ltd.
Content copyright © 2007-2010, the authors
Daemon image copyright ©1988, Marshall Kirk McKusick