I have a client that has a linksys firewall setup at his workstation (Don't ask why, you don't want to know). He needs to pass SSH traffic to his workstation. I have a acl configured and a static configured for his IP to pass the port 22 traffic to his "external" linksys address. He has the linksys configured to pass port 22 traffic to his internal workstation.
When he is behind the pix with a natted IP this does not work, I just get a connection refused. When i place him outside the firewall with a routable IP everything works fine. Is this a problem with TCP sequencing? Can this be disabled?
1. Your client is a donkey, take off your shoe and beat him with it.
2. Given his donkey status, I must question whether he is actually running a ssh daemon. Only a ssh daemon (server) needs to be accessible via tcp 22. If he is runninng a ssh daemon, is he running a unix like os? If so, run ipchains, PF, or IPF on it.
BenefitsDocumentationPrerequisiteImage Download LinksLimitationsSupported PlatformsLicense RequirementsTopologyStep-By-Step ConfigurationConfigure Virtual ServiceActivate the virtual service and configure guest IPsConfiguring UTD (Service Plane)Configurin...
Login to the FXOS chassis manager.
Direct your browser to https://hostname/, and log-in using the user-name and password.
Go to Help > About and check the current version:
Check the current version availa...
We have configured the outside and inside Interface with official ipv6 adresses, set a default route on outside Interface to our router, we also have definied a rule , which also gets hits, to permit tcp from inside Interface to any6.
In Syslog I also se...