This discussion has been locked.

You can no longer post new replies to this discussion. If you have a question you can start a new discussion

SSH DNAT not working

UTM 9.313-3
SG125W

I have a /29 block from my ISP and have SSH disabled on the UTM.

I am trying to forward port 22 from one of my statics to an internal device. I can SSH into the device internally with no issue. But from outside, I get a connection refused.

Here is the DNAT entry I made. It doesn't matter if I specify SSH or not for the destination translation. I have 6 other entries going to this same device and they all work. I just can't get SSH to work. Does anyone know what is going on here?

I even tried a different static and a different internal device with SSH enabled and it STILL didn't work.

This thread was automatically locked due to age.

Parents

0 scorpionking over 10 years ago

Enable loggin for the DNAT, try to connect from outside, then show a corresponding line from the full firewall log (not the live log).
Cancel
Vote Up 0 Vote Down

Cancel

Reply

0 scorpionking over 10 years ago

Enable loggin for the DNAT, try to connect from outside, then show a corresponding line from the full firewall log (not the live log).
Cancel
Vote Up 0 Vote Down

Cancel

Children

0 awesomo over 10 years ago in reply to scorpionking

Enable loggin for the DNAT, try to connect from outside, then show a corresponding line from the full firewall log (not the live log).

2015:07:01-12:15:37 173 ulogd[11511]: id="2000" severity="info" sys="SecureNet" sub="packetfilter" name="Packet logged" action="log" fwrule="62012" initf="eth1" srcmac="00:22:2d:6a:b6:ce" dstmac="00:1a:8c:49:17:89" srcip="76.112.***.***" dstip="173.162.***.***" proto="6" length="52" tos="0x00" prec="0x20" ttl="122" srcport="49884" dstport="22" tcpflags="SYN"

That is the only line that shows up.