ssh port tunneling/forwarding with dropbear: connect from any host?

[joe_heaven]

Hi,

I tried to setup a port forwarding from one computer (PC1) with a running OpenSSH on port 8022 to my ASUS WL-500g (Oleg 1.9.2.7-7b).

What I did and what is working:
1) Enabled dropbear 0.47 on WL-500g on boottime with following options:
dropbear -a -s -g -p 2225
Note that I included the "-a" switch.
2) Enabled public_key authorization
3) With putty on PC2 (connected directly to WL-500g) connect to WL-500g:
--> Everything works perfectly: No user prompt, no password, direct connection. OK up to here

Set up PC1:
1) Start OpenSSH (cygwin) on Port 8022
2) Check running sshd on PC1 with user/password authentication --> Perfect!
3) Initiate port forwarding on PC1:
plink -v -ssh -P 2225 -R 8022:pc1:8022 -i private.ppk admin@wl500g
Results:

Code:

Server version: SSH-2.0-dropbear_0.47
We claim version: SSH-2.0-PuTTY_Release_0.58
Using SSH protocol version 2
Using Diffie-Hellman with standard group "group1"
Doing Diffie-Hellman key exchange
Host key fingerprint is:
ssh-rsa 1040 *********************
Initialised AES-256 client->server encryption
Initialised HMAC-SHA1 client->server MAC algorithm
Initialised AES-256 server->client encryption
Initialised HMAC-SHA1 server->client MAC algorithm
Using username "admin".
Reading private key file "private.ppk"
Offered public key
Offer of public key accepted
Authenticating with public key "rsa-key"
Access granted
Opened channel for session
Requesting remote port 8022 forward to pc1:8022
Remote port forwarding from 8022 enabled
Allocated pty (ospeed 38400bps, ispeed 38400bps)
Started a shell/command

4) Checking to connect to PC1 from ASUS:

Code:

[admin@WL500g root]$ ssh -l username -p 8022 localhost
Received remote port 8022 open request from 127.0.0.1:2300
Attempting to forward remote port to PC1:8022
Forwarded port opened successfully

--> Everything is fine! Local port 8022 on ASUS is forwarded to PC1. Good.

5) Connect from PC2 to PC1
putty on PC2 tries to connect to ASUS WL-500g on port 8022.
--> NOT WORKING!

It seems that everything is setup well, the port is forwarded, but no connection from another host than the WL-500g itself is allowed to connect to this port.

Why is that the case, even if I explicitely allowed
"-a Allow connections to forwarded ports from any host"
in my dropbear options?

I know this is a bit lengthy but I tried to include everything what might help and to rule out possible misunderstanding on what is working and what is not working. It is only the last inch of my way to connect from PC2 to PC1 that is missing.

Many thanks in advance and greeting from Cologne!

Jochen