From 939387a9702c28990feeaced7acdaf78e0ba9b04 Mon Sep 17 00:00:00 2001 From: Nico Schottelius Date: Thu, 7 Nov 2019 19:08:36 +0100 Subject: [PATCH] -! --- .../contents.lr | 12 ++++++++---- 1 file changed, 8 insertions(+), 4 deletions(-) diff --git a/content/u/blog/nftables-magic-redirect-all-ports-to-one-port/contents.lr b/content/u/blog/nftables-magic-redirect-all-ports-to-one-port/contents.lr index 50b4df2..376e1a7 100644 --- a/content/u/blog/nftables-magic-redirect-all-ports-to-one-port/contents.lr +++ b/content/u/blog/nftables-magic-redirect-all-ports-to-one-port/contents.lr @@ -1,4 +1,4 @@ -title: Firewall magic with nftables: how to redirect all ports to one port +title: How to redirect all ports to one port with nftables --- pub_date: 2019-11-07 --- @@ -23,10 +23,14 @@ outgoing traffic and thus prevent you to connect to where you want to connect to. Here at [ungleich](https://ungleich.ch) we are travelling quite a lot, but we always want to be able to access the servers of -[Data Center Light](https://datacenterlight.ch), so that we can -maintain them from everywhere in the world, so we needed a way to +[Data Center Light](https://datacenterlight.ch). + +To be able to do so from anywhere in the world, we needed to ensure that we have some way of connecting to them, even if the -network disallows traffic to the ssh port (tcp/22). +network filters traffic to the ssh port (tcp/22). + +While our main motivation was to enable ssh, the example below can be +adjusted to any service, including http, https, smtp, ... ## A solution based on nftables