Hello,

I'm new to this forum. I searched for two topics:
1) support of ssh port forwarding from the WAN side of the router to set up tunnel from the ouside world into private LAN
2) support of QoS with tc qdisc htb or some equivalent.
Are there any binaries already built with these features inside? As for building a kernel myself I am afraid I do not have enough Linux experience. Any link to relevant topics I would appriaciate,

regards,

Stefan

Part 1 is easilly done, all ingedients are already in your box.

The way I have it working is as following. BTW my internet provider does not allow servers, and blocks incoming trafic < port 1024. If you have a normal internet provider, step 1 is probly not needed.

Step 1, open up a new SSH port
/usr/sbin/dropbear -b /etc/dropbear/welcome.msg -p 22 -p 55909
This opens a SSH on port 22 and 55909

Step 2 Open up the port from the WAN side
iptables -A INPUT -p tcp -i eth1 --dport 55909 -j ACCEPT

Step 3 Configure your client
I Use putty (but any decent client will do), which uses the following options:
Source port, destination, Local (don't forget to click the ADD button)

for example I make a VNC (port 5900) connection from my remote location to PC 192.168.1.100 in my network, I configure

Sourceport: 5900
Destination: 192.168.1.100:5900
Local

Now to connect, my VNC client will use "localhost" as host (127.0.0.1), you can make many connections

Q2: Oleg is your man....

Thanks,

this was the trick, to open the firewall for ssh connections (in my case just port 22):


Step 2 Open up the port from the WAN side
iptables -A INPUT -p tcp -i eth1 --dport 55909 -j ACCEPT

ssh works perfectly inclusing port forwarding.

QoS seems to need a rebuild of the kernel... Hopefully one of the next Oleg firmwares will have it integrated.