PF rdr problem -- CLOSED:SYN_SENT
From: Aaron Couts (spam_at_couts.org)
Date: 02/18/05
- Next message: bstover_at_norcalmutual.com: "Windows Updates: Firewall setting for outbound traffic"
- Previous message: Robert: "Re: sent more than received"
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]
Date: Fri, 18 Feb 2005 17:43:39 GMT
My office has two internal networks, and the one I'm on doesn't have a
printer. So I'm setting up a port-forwarding OpenBSD box to forward
port 9100 connections from my network to the printer on the other network.
Here's my pf.conf:
ext_if="rl0"
int_printer="10.0.131.99"
rdr pass on $ext_if proto tcp from any to any port 9100 -> $int_printer \
port 9100
Here's a picture of what I'm doing:
192.168.1.0/24 -> 192.168.1.99 / 10.0.131.191 -> 10.0.131.99
my network ext_if OpenBSD int_if printer
The network on the OpenBSD machine is setup correctly; I can connect to
and from machines on both networks using the OpenBSD box. However when
I try to utilize the port forwarding, I can't connect:
$ pfctl -ss
self tcp 10.0.131.99:9100 <- 192.168.1.99:9100 <- 192.168.1.107:1854 \
CLOSED:SYN_SENT
Any attempts to connect just hang. Anyone have any hints?
BTW I was able to do this successfully using a Linksys router. The wierd
thing was that I could print from Linux machines but not from Windows
machines. The JetDirect card on the printer has a configuration tool that
can be accessed by telnetting to port 23. From a Linux machine I could
"telnet 192.168.1.99" and get the config tool, but from Windows machines
I got "connection timed out" using the same command. Weird.
-- To contact me via email, substitute 'aaronc' for 'spam' in my address. http://www.towerdata.com
- Next message: bstover_at_norcalmutual.com: "Windows Updates: Firewall setting for outbound traffic"
- Previous message: Robert: "Re: sent more than received"
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]
Relevant Pages
|
