VNC and PF+NAT

[John Wall <john_(_dot_)_wall_(_at_)_norma_(_dot_)_se>]

-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1

Hi all,

I have tried to get VNC trough NAT working all weekend now with no
succsess. Maby you gys got the answer.

Here is my vnc rules:

$iftru # Trusted if (em0)
$ifext # External if (fxp0)
$vnc # 192.168.2.140 port 5901

rdr on $ifext proto {udp,tcp} from any to $ifext \
~        port 5901 -> $vnc port 5901

pass log inet proto tcp from any to $vnc port 5901 flags S/SA keep state

The log:

pass in on fxp0: 62.13.20.7.40190 > 192.168.2.140.5901
pass out on em0: 62.13.20.7.40190 > 192.168.2.140.5901

I run sniffit on $vnc and no connections are made to $vnc why?

I'm trying to connect from outside not from the internal-lan.

What am I going wrong? Does not rdr work to internal lan?

I really need help with this one please!


- --
Hdlsningar
John
...................................

JOHN WALL | System Administrator
Norma Communication
Svdra Hamngatan 19-21
411 14 Gvteborg

john_(_dot_)_wall_(_at_)_norma_(_dot_)_se
Direkt: 031-748 88 34
Fax: 031-748 88 01
Mobil: 0708-49 88 13
http://www.norma.se
GnuPG-ID: E7AF2EA6

Ver kombinerade kunskap inom marknadskommunikation
och informationsteknologi skapar kostnadseffektiva och
flexibla lvsningar. Besvk www.norma.se.
Comment: Using GnuPG with Thunderbird - http://enigmail.mozdev.org

iD8DBQFCB0YjvaNO/OevLqYRArsTAJ9sSLNaCccXK2BgMdFqjU9ItrTlPgCfc1Yg
Pc0qx6VeOT2BWd4R9ODFgWc=
=3iwp
-----END PGP SIGNATURE-----