View Single Post
  #1   (View Single Post)  
Old 29th November 2008
gyosl gyosl is offline
New User
 
Join Date: Nov 2008
Posts: 3
Default SSH VNC behind pf/nat

Another newbie question. I have setup my xp with OpenSSH and VNC server. Everything works fine with SSH tunneling.
Laptop -> Internet -> xp

When I hooked up my gateway machine(OpenBSD) to xp, SSH tunneling turned broken.
Laptop -> Internet -> OpenBSD -> xp

I am wondering whether I have misconfigured the pf rules. I SSH the xp machine from Laptop without problems, but when I run VNC viewer from Laptop, connect to:127.0.0.1, it said "Connection established", and then right after it, it said, "Connection Closed".

Below is part of my pf.conf.

rdr on $ext_if proto tcp from any to any port 22 tag SSH -> 10.0.0.7 port 22

## loopback on internal interface $int_if
rdr on $int_if proto tcp from any to any port 5900 tag VNC -> 10.0.0.7 port 5900
rdr on $int_if proto tcp from 10.0.0.7 to any port 5900 -> 10.0.0.7 port 5900

pass in quick on $ext_if tagged SSH
pass in quick on $int_if

pass out quick on $int_if tagged SSH
pass out quick on $int_if tagged VNC
pass out keep state
Reply With Quote