From owner-freebsd-questions Fri Jul 27 14:50:20 2001 Delivered-To: freebsd-questions@freebsd.org Received: from www.tntpro.com (159-63.suscom-maine.net [207.5.159.63]) by hub.freebsd.org (Postfix) with ESMTP id 3374237B406 for ; Fri, 27 Jul 2001 14:50:07 -0700 (PDT) (envelope-from tony@tntpro.com) Received: from TONY (tony.tntpro.com [192.168.0.10]) by www.tntpro.com (8.11.4/8.11.3) with SMTP id f6RLo6P69768 for ; Fri, 27 Jul 2001 17:50:06 -0400 (EDT) (envelope-from tony@tntpro.com) Message-ID: <006f01c116e6$1944e840$0a00a8c0@TONY> From: "Tony" To: "'freebsd-questions@freebsd.org'" Subject: FTP problems thru inetd any ideas on how to fix? Date: Fri, 27 Jul 2001 17:49:45 -0400 MIME-Version: 1.0 Content-Type: multipart/alternative; boundary="----=_NextPart_000_006C_01C116C4.858A29B0" X-Priority: 3 X-MSMail-Priority: Normal X-Mailer: Microsoft Outlook Express 5.50.4522.1200 X-MIMEOLE: Produced By Microsoft MimeOLE V5.50.4522.1200 Sender: owner-freebsd-questions@FreeBSD.ORG Precedence: bulk List-ID: List-Archive: (Web Archive) List-Help: (List Instructions) List-Subscribe: List-Unsubscribe: X-Loop: FreeBSD.ORG This is a multi-part message in MIME format. ------=_NextPart_000_006C_01C116C4.858A29B0 Content-Type: text/plain; charset="iso-8859-1" Content-Transfer-Encoding: quoted-printable when I FTP to my server from my internal network (192.168.0.x) = everything works fine... ftp> put ibm_linux-02.avi local: ibm_linux-02.avi remote: ibm_linux-02.avi 150 Opening BINARY mode data connection for "ibm_linux-02.avi". 100% = |************************************************************************= ******************************| 212 KB 00:00 ETA 226 Transfer complete. 217088 bytes sent in 0.44 seconds (481.30 KB/s) ftp> exit 221 Goodbye. but when I try from outside my firewall I get this: ftp> put ibm_linux-02.avi local: ibm_linux-02.avi remote: ibm_linux-02.avi ftp: connect: Connection refused ftp> exit 221 Goodbye. copy of natd.conf: root:/etc# more natd.conf=20 interface ed0 use_sockets yes same_ports yes dynamic yes redirect_port tcp 192.168.0.100:http http redirect_port tcp 192.168.0.100:https https redirect_port tcp 192.168.0.100:22 24 redirect_port tcp 192.168.0.100:smtp smtp redirect_port tcp 192.168.0.100:pop3 pop3 redirect_port tcp 192.168.0.100:20 20 redirect_port udp 192.168.0.100:20 20 redirect_port tcp 192.168.0.100:ftp ftp redirect_port udp 192.168.0.100:ftp ftp redirect_port tcp 192.168.0.100:8010 8010 redirect_port tcp 192.168.0.100:8011 8011 redirect_port tcp 192.168.0.10:4709 4709 root:/etc#=20 output of ipfw list root:/etc# ipfw list 00050 divert 8668 ip from any to any via ed0 00100 allow ip from any to any via lo0 00200 deny ip from any to 127.0.0.0/8 00300 deny ip from 127.0.0.0/8 to any 00400 pipe 1 ip from 192.168.0.100 to any 65000 allow ip from any to any 65535 deny ip from any to any if anyone is interested the pipe is for dummynet throttling and having = that in there doesn't effect FTP connect Legal Notice: Receipt of this message constitutes your unconditional = acceptance of agreement with all terms, conditions, conclusions and = opinions, either expressed or implied, as interpreted by the author = without further clarification. Use of any information contained herein = [inclusive of any and all attachments] or omitted in part or in whole = from the actual message is strictly prohibited and will be subject to = collection of significant financial damages. ------=_NextPart_000_006C_01C116C4.858A29B0 Content-Type: text/html; charset="iso-8859-1" Content-Transfer-Encoding: quoted-printable
    when I FTP to my = server from my=20 internal network (192.168.0.x) everything works fine...
 
ftp> put = ibm_linux-02.avi
local:=20 ibm_linux-02.avi remote: ibm_linux-02.avi
150 Opening BINARY mode = data=20 connection for "ibm_linux-02.avi".
100%=20 |************************************************************************= ******************************|  =20 212 KB    00:00 ETA
226 Transfer complete.
217088 = bytes=20 sent in 0.44 seconds (481.30 KB/s)
ftp> exit
221 = Goodbye.
 
    but when I try from = outside my=20 firewall I get this:
 
ftp> put = ibm_linux-02.avi
local:=20 ibm_linux-02.avi remote: ibm_linux-02.avi
ftp: connect: Connection=20 refused
ftp> exit
221 Goodbye.
 
    copy of = natd.conf:
 
root:/etc# more natd.conf
interface = ed0
use_sockets yes
same_ports yes
dynamic yes
redirect_port = tcp=20 192.168.0.100:http    http
redirect_port tcp=20 192.168.0.100:https   https
redirect_port tcp=20 192.168.0.100:22      24
redirect_port tcp=20 192.168.0.100:smtp    smtp
redirect_port tcp=20 192.168.0.100:pop3    pop3
redirect_port tcp=20 192.168.0.100:20      20
redirect_port udp=20 192.168.0.100:20      20
redirect_port tcp=20 192.168.0.100:ftp     ftp
redirect_port udp=20 192.168.0.100:ftp     ftp
redirect_port tcp=20 192.168.0.100:8010    8010
redirect_port tcp=20 192.168.0.100:8011    8011
redirect_port tcp=20 192.168.0.10:4709    4709
root:/etc#
 
    output of ipfw = list
 
root:/etc# ipfw list
00050 divert = 8668 ip from=20 any to any via ed0
00100 allow ip from any to any via lo0
00200 = deny ip=20 from any to 127.0.0.0/8
00300 deny ip from 127.0.0.0/8 to = any
00400 pipe 1=20 ip from 192.168.0.100 to any
65000 allow ip from any to any
65535 = deny ip=20 from any to any
 
if anyone is interested the pipe is for = dummynet=20 throttling and having that in there doesn't effect FTP = connect
 
 
 
Legal Notice: Receipt of this message = constitutes=20 your unconditional acceptance of agreement with all terms, conditions,=20 conclusions and opinions, either expressed or implied, as interpreted by = the=20 author without further clarification. Use of any information contained = herein=20 [inclusive of any and all attachments] or omitted in part or in whole = from the=20 actual message is strictly prohibited and will be subject to collection = of=20 significant financial damages.
------=_NextPart_000_006C_01C116C4.858A29B0-- To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-questions" in the body of the message