Posted by: Anonymous
on October 05, 2007 04:56 PM
You write: " + : ALL : 192.168.... The first line means that anybody ("ALL") can log in to my machine from within the internal network at home."
So you do have a multi-machine home network? The machine you're accessing remotely is one of several on a home network with a private address range 192.168.x.x and these 192.168 addresses can't be visible from the internet (because lots of other home networks are also using 192.168.) And the 192.168 machines are connected to a little router which might be 192.168.1.1, and this is connected to a DSL or cable modem that's maybe 192.168.1.254 on the side facing inward and has the changeable, ISP-provided IP address A.B.C.D on the side facing the internet?
If that's the picture then OK, I see how you're keeping track of the outside, ISP-provided address even if it changes. But once you get your packets from wherever in the world you are to your modem's outward-facing address A.B.C.D, which part of this setup routes them the last few feet to your PC? If you initiated a request from inside the home network going out, the NAT device would keep track of which PC the request came from and where to send the replies. But since you're now initiating the connection from outside, I don't see where or how this happens. Thanks very much!