Date: Fri, 8 Dec 2006 16:53:02 +0300 From: "Roman Gorohov. " <roma.a.g@gmail.com> To: Gergely CZUCZY <phoemix@harmless.hu> Cc: freebsd-pf@FreeBSD.org Subject: FTP problem Message-ID: <1904646577.20061208165302@gmail.com> In-Reply-To: <20061207133535.GA16219@harmless.hu> References: <546388630.20061207163149@gmail.com> <20061207133535.GA16219@harmless.hu>
next in thread | previous in thread | raw e-mail | index | archive | help
Hello, Gergely. > try to use pftpx instead of ftp-proxy, it's available from ports. > Bye, > Gergely Czuczy I tried switch to pftpx and got same result. Last messages: Dec 7 17:02:05 fw-spb pftpx[7306]: client limit (100) reached, refusing connection from 10.10.1.70 Dec 7 17:02:47 fw-spb pftpx[7306]: client limit (100) reached, refusing connection from 10.10.1.70 Dec 7 17:02:55 fw-spb pftpx[7306]: #296 proxy cannot connect to server 10.10.1.70: Operation not permitted Dec 7 17:03:03 fw-spb pftpx[7306]: client limit (100) reached, refusing connection from 10.10.1.70 Dec 7 17:03:15 fw-spb last message repeated 2 times Then it hang. Address 10.10.1.70 is server itself, so I don't understand whats going on... I started to think that there is some loop in pf rules, this would nicely explain why there isn't any messages at console. But I can't see any. This is all referencing to ftp in my pf.conf: rdr pass on $int_if proto tcp from any to any port 21 -> 127.0.0.1 port 8021 pass out on $ext_if inet proto tcp from $ext_if to any port 21 flags S/AUPRFS modulate state pass in on $ext_if proto tcp from any to any port 21 keep state Any suggestions? Regards, Roman.
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?1904646577.20061208165302>