From owner-freebsd-questions Mon Jan 22 13:29:32 2001 Delivered-To: freebsd-questions@freebsd.org Received: from tango.SoftHome.net (tango.SoftHome.net [204.144.231.49]) by hub.freebsd.org (Postfix) with SMTP id 06F5437B699 for ; Mon, 22 Jan 2001 13:29:13 -0800 (PST) Received: (qmail 2485 invoked by uid 417); 22 Jan 2001 21:37:06 -0000 Received: from nas-213-43-139-142.ixir.com (HELO gnu) (213.43.139.142) by smtpa.softhome.net with SMTP; 22 Jan 2001 21:37:06 -0000 Message-ID: <003301c084bb$52856ac0$8e8b2bd5@gnu> From: "MuratBSD" To: Subject: My IPFW and NATD problems is going on Date: Mon, 22 Jan 2001 23:35:41 +0200 MIME-Version: 1.0 Content-Type: text/plain; charset="iso-8859-9" Content-Transfer-Encoding: 7bit X-Priority: 1 X-MSMail-Priority: High X-Mailer: Microsoft Outlook Express 5.50.4133.2400 X-MimeOLE: Produced By Microsoft MimeOLE V5.50.4133.2400 Sender: owner-freebsd-questions@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.ORG Hi Again me; sorry I setup some NATD and IPFW options, but my problems going on I opened the port redirection in the NATD options, it is about FTP Data port (TCP-20) so I also opened FTP Data port on the firewall rules. My ftp clients automatically setup passive mode ftp by itself, but I cannot any download, upload etc I will start send and get gigabytes of data to Europa in February over this firewall. But I cannot setup FTP operations Please help me 10.100.100.1 is fxp0 195.155.33.55 is fxp1 //-------------------------------------------------------------------------- ----// IPFW Section 00020 145877 61321709 divert 8668 ip from any to any via fxp1 00030 692 67424 allow ip from any to any via lo0 00040 276165 120791887 allow tcp from any to any established 00060 0 0 deny ip from any to 127.0.0.0/8 00200 8523 403556 allow tcp from any to any 80 setup 00201 0 0 allow tcp from any 80 to any 00202 0 0 allow tcp from any to any 80 00240 0 0 allow tcp from any 20 to any 00245 0 0 allow tcp from any to any 20 00250 0 0 allow tcp from any 21 to any 00255 23 1024 allow tcp from any to any 21 00260 2 96 allow tcp from any to any 22 00265 0 0 allow tcp from any 22 to any 00270 0 0 allow tcp from any 25 to any 00275 56 2656 allow tcp from any to any 25 00280 2766 431894 allow udp from any 53 to any 00285 1904 131195 allow udp from any to any 53 00290 0 0 allow tcp from any 110 to any 00295 2575 122904 allow tcp from any to any 110 00300 0 0 allow tcp from any 119 to any 00305 20 960 allow tcp from any to any 119 00310 0 0 allow tcp from any 443 to any 00315 162 7776 allow tcp from any to any 443 08000 375 408344 allow icmp from any to any 09000 0 0 allow tcp from any 3128 to any 09001 183 8656 allow tcp from any to any 3128 65532 3267 294390 deny udp from any to any via 195.155.33.55 #fxp1 = 195.155.33.55 65533 0 0 deny udp from any to any via fxp1 65534 4397 372716 deny ip from any to any 65535 1 48 deny ip from any to any //-------------------------------------------------------------------------- ----// rc.conf section gateway_enable="YES" firewall_enable="YES" firewall_script="/etc/rc.murat" natd_enable="YES" natd_interface="fxp1" natd_flags=" -dynamic -same_ports -f /etc/natd.conf" //-------------------------------------------------------------------------- ----// natd.conf (That's all), 10.100.100.1 is fxp0 on my FreeBSD redirect_port tcp 10.100.100.1:20-21 20-21 redirect_port tcp 10.100.100.1:23 23 To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-questions" in the body of the message