I want to let computers on LAN1 connect to port 7000 (a win tcp/ip server) of a computer located in a subnet of LAN2.
The network layout is like this:
Code:
server1 <-LAN1 LAN2-> server2 server3
subnet1 - [192.168.0.65 FW+NAT1 x.x.x.x] - internet - [y.y.y.y FW+NAT2 192.168.226.1] - servernet - [192.168.226.2 FW+NAT3 192.168.0.65] - subnet2 - [192.168.0.67]
The task is more precisely: any machine on subnet1 of LAN1 should be allowed to connect to port 7000 of a machine (192.168.0.67) on subnet2 of LAN2, whilst going through three servers doing firewall and nat.
I could establish a working natd redirect rule on server3 to redirect 192.168.0.67:7000 to 192.168.226.2:7000. So, I can connect to 192.168.0.67:7000 via 192.168.226.2:7000.
I tried a chain of port redirections, but no furher port redirections seem to work.
I wonder if I could use ssh port forwarding for the task, as ssh is on servers 1, 2 and 3 (but it is not on the windows server 192.168.0.67).
I already made some attempts with ssh port forwarding, too, with no success. (I think I could not grasp the principles of ssh port forwarding, since I could not establish even the simplest one inside LAN2)
Could you help me?