i would like to perform the following:
My workstation sits behind a router and the sshd is reachable from outside through a portforwarding at the router. My router does not have the abillity to forward for example port 3000 to 22 within the lan. It only allows 22 -> 22. So i dont like this! My idea was, creating a portforwarding at the router lets say port 4000 and forward it to my worksation, then create an iptable rule which forwards the connection to itself
iptables -t nat -A PREROUTING -i eth0 -p tcp -d my.ip.add.ress --dport 4000 --to my.ip.add.ress:22
what do you think about this idea? I have red that its not possible to start the sshd at an unprivileged port. Any hints on this?