ssh behind a firewall

[Pavlos Parissis]

Hello all,
I have a firewall running iptables and connected to the internet with ISDN
and
it has static ip.
Behind the firewall i have a samba server which also has ssh server.
I want people from internet to connect with ssh and use the sftp-server in
order
to put/get files to that server.
So i said i will use these rules

$IPT -t nat -A PREROUTING -i $EXT_IFACE -p tcp -s ! $LAN_IP_RANGE --dport
2222 -j DNAT --to-destination $SSH_SERVER
$IPT -A internet-lan -p tcp -d $SSH_SERVER --dport 2222 -m state --state
NEW,ESTABLISHED -j ACCEPT
$IPT -A lan-internet -p tcp -s $SSH_SERVER --sport 2222 -m state --state
ESTABLISHED -j ACCEPT

I did n't try it so i would like to know
if is it possible this scenario to work?

Yours,
PAvlos


~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
I love having the feeling of being in control
while i have the sensation of speed

The surfer of life
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~