Skip site navigation (1)Skip section navigation (2) 
Date:      Mon, 22 Jan 2001 23:35:41 +0200
From:      "MuratBSD" <muratbsd@softhome.net>
To:        <freebsd-questions@freebsd.org>
Subject:   My IPFW and NATD problems is going on
Message-ID:  <003301c084bb$52856ac0$8e8b2bd5@gnu>
next in thread | raw e-mail | index | archive | help 
Hi

Again me; sorry

I setup some NATD and IPFW options, but my problems going on

I opened the port redirection in the NATD options, it is about FTP Data port
(TCP-20) so I also opened FTP Data port on the firewall rules.
My ftp clients automatically setup passive mode ftp by itself, but I cannot
any download, upload etc

I will start send and get gigabytes of data to Europa in February over this
firewall. But I cannot  setup FTP operations

Please help me
10.100.100.1  is fxp0
195.155.33.55  is fxp1

//--------------------------------------------------------------------------
----//
IPFW Section


00020 145877  61321709 divert 8668 ip from any to any via fxp1
00030    692     67424 allow ip from any to any via lo0
00040 276165 120791887 allow tcp from any to any established
00060      0         0 deny ip from any to 127.0.0.0/8
00200   8523    403556 allow tcp from any to any 80 setup
00201      0         0 allow tcp from any 80 to any
00202      0         0 allow tcp from any to any 80
00240      0         0 allow tcp from any 20 to any
00245      0         0 allow tcp from any to any 20
00250      0         0 allow tcp from any 21 to any
00255     23      1024 allow tcp from any to any 21
00260      2        96 allow tcp from any to any 22
00265      0         0 allow tcp from any 22 to any
00270      0         0 allow tcp from any 25 to any
00275     56      2656 allow tcp from any to any 25
00280   2766    431894 allow udp from any 53 to any
00285   1904    131195 allow udp from any to any 53
00290      0         0 allow tcp from any 110 to any
00295   2575    122904 allow tcp from any to any 110
00300      0         0 allow tcp from any 119 to any
00305     20       960 allow tcp from any to any 119
00310      0         0 allow tcp from any 443 to any
00315    162      7776 allow tcp from any to any 443
08000    375    408344 allow icmp from any to any
09000      0         0 allow tcp from any 3128 to any
09001    183      8656 allow tcp from any to any 3128
65532   3267    294390 deny udp from any to any via 195.155.33.55  #fxp1 =
195.155.33.55
65533      0         0 deny udp from any to any via fxp1
65534   4397    372716 deny ip from any to any
65535      1        48 deny ip from any to any

//--------------------------------------------------------------------------
----//
rc.conf  section

gateway_enable="YES"
firewall_enable="YES"
firewall_script="/etc/rc.murat"

natd_enable="YES"
natd_interface="fxp1"
natd_flags=" -dynamic -same_ports -f /etc/natd.conf"


//--------------------------------------------------------------------------
----//
natd.conf (That's all), 10.100.100.1  is fxp0 on my FreeBSD


redirect_port tcp 10.100.100.1:20-21 20-21
redirect_port tcp 10.100.100.1:23 23



To Unsubscribe: send mail to majordomo@FreeBSD.org
with "unsubscribe freebsd-questions" in the body of the message

Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?003301c084bb$52856ac0$8e8b2bd5>