Forward SSH traffic on port 443 to server

[`danny]

I am currently running a PIX 515 with PIX IOS 6.3 installed and have a question on forwarding SSH traffic on port 443. Currently I am running a server in which I have installed freesshd on. The SSH server is running on port 443 instead of 22 so I can access my computer at school in case I need a file or something. I want any outside host to be able to connect to my SSH server on port 443 through my PIX 515 firewall and was wondering on how to do this? I have PAT setup since I only have 1 IP address fyi.

Thanks for all the help,

Dan

 

[Hunterzyph]

So wait, you've got the PAT setup redirecting inbound 443 traffic to your server running freesshd...but what's not working? Do you have other services running 443 on your server, like HTTPS via IIS?

 

[`danny]

Sorry I wasn't clear, I just have PAT setup atm so all the hosts on my LAN can access the internet under 1 IP. I do not have any other services like HTTPS running atm.

Also here are the commands I have tried so far:

access-list outside-to-inside permit tcp any interface outside eq ssh
static (inside,outside) tcp interface ssh SERVERIP ssh netmask 255.255.255.255 0 0
access-group outside-to-inside in interface outside

access-list outside-to-inside permit tcp any interface outside eq https
static (inside,outside) tcp interface https SERVERIP https netmask 255.255.255.255 0 0
access-group outside-to-inside in interface outside

 

[Captain Colonoscopy]

I think you need to put your server's IP address where it says "SERVERIP" unless you have names setup to resolve the word SERVERIP to an IP address, like 10.1.1.1 or something.

 

[`danny]

Hehe when I entered the commands into my console of my PIX, I replaced SERVERIP with the ip addy of my server .

 

[Captain Colonoscopy]

post your config, I would like to see if I can find what's goofing. You can SSH into the server on 443 from inside your network right?

 

[`danny]

Yes I can, I'll post the config when I get home