[Wlug] charter.net & ssh

Bill Mills-Curran bcurran@clariion.com
Thu, 10 May 2001 15:19:56 -0400 (EDT)


Answers below...

On Thu, 10 May 2001, Charles R. Anderson wrote:

> Date: Thu, 10 May 2001 15:02:41 -0400 (EDT)
> From: Charles R. Anderson <cra@WPI.EDU>
> Reply-To: wlug@mail.wlug.org
> To: "'wlug@mail.wlug.org'" <wlug@mail.wlug.org>
> Subject: RE: [Wlug] charter.net & ssh
> Are you doing uni-directional NAT on the Linksys?  Are there any firewall
> rules defined on the Linksys?

Yes, at least I believe that's it.  When I was testing, I configured
port 22 to translate to my internal address.

> In addition to allowing packets from outside to port 22 on your SSH
> server, do you allow outgoing packets from your SSH server on port 22 to
> local ephemeral ports (1024-65535) on the outside clients?

I believe that all outgoing packets are passed & translated by
default.  (I've never heard them called ephemeral.  I've always called
them transient.)