netsh requires IP Helper service to be active and IPv6 support enabled.
- listenaddress / listenport: The IP address & port open to the attacker machine
- connectaddress / connectport: The IP address & port normally inaccessible to the attacker machine
Unlike SSH local port forwarding, this setup doesn’t require special setup on the local (attacker) machine’s part.
If Windows Firewall is in the way (and you have SYSTEM privileges), use this to overcome it (use listener’s address for localip/port):