Date: Tue, 27 Nov 2001 12:51:34 +0200 From: Ruslan Ermilov <ru@FreeBSD.ORG> To: Danny Carroll <dannycarroll@hotmail.com> Cc: security@FreeBSD.ORG Subject: Re: IPFW, natd and an internal FTP server. Message-ID: <20011127125134.C34943@sunbay.com> In-Reply-To: <LAW2-F106gRB0OCxDqi000195a2@hotmail.com> References: <LAW2-F106gRB0OCxDqi000195a2@hotmail.com>
next in thread | previous in thread | raw e-mail | index | archive | help
On Mon, Nov 26, 2001 at 06:52:23PM +0000, Danny Carroll wrote: > Rusland, > > Works like an absolute charm... You are a lgend. > Can anyone see any reason why someone should not do this? > > -D > > >Doh, you're right! We don't currently punch firewall holes for 227/229 > >FTP server replies, for no apparent reason. Could you please try the > >attached patch? It worked for me, both for the PASV and EPSV modes > >with an FTP server running on a NAT box. You'll have to recompile both > >lib/libalias and sbin/natd, in that order. > Committed to 5.0-CURRENT, will MFC in 1 week. Thanks! Cheers, -- Ruslan Ermilov Oracle Developer/DBA, ru@sunbay.com Sunbay Software AG, ru@FreeBSD.org FreeBSD committer, +380.652.512.251 Simferopol, Ukraine http://www.FreeBSD.org The Power To Serve http://www.oracle.com Enabling The Information Age To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-security" in the body of the message
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?20011127125134.C34943>