Date: Thu, 16 Sep 2004 03:57:54 -0000 From: "Gregory P. Smith" <greg@electricrain.com> To: pf4freebsd@freelists.org Subject: [pf4freebsd] Re: Problem with ftp-proxy. Message-ID: <20031203170735.GM14907@zot.electricrain.com> In-Reply-To: <20031203113200.780a87da.matteo.niccoli@finsystem.net> References: <20031203113200.780a87da.matteo.niccoli@finsystem.net>
next in thread | previous in thread | raw e-mail | index | archive | help
These are my rules that work for ftp proxy on my nat+firewall system. Are you missing a 'port' between 127.0.0.1 and 8021? (or is that implied in pf?) ......... nat on $ext_if from $int_if:network to any -> ($ext_if) # This redirection is for a local ftp proxy so that FTP clients on the # local network can connect to FTP servers on the int-uh-net without # requiring PASV ftp: rdr on $int_if proto tcp from any to any port ftp -> 127.0.0.1 port ftp-p= roxy ### ftp-proxy is run as user 'proxy' to open inbound data connection sock= ets pass in on $ext_if inet proto tcp from any to $ext_if \ user proxy keep state ......... On Wed, Dec 03, 2003 at 11:32:00AM +0000, Matteo Niccoli wrote: > Hi, >=20 > I'm using pf 2.0 on a FreeBSD 5.1 box. It works fine, but I have=20 > problem with ftp-proxy. >=20 > This is my pf.conf >=20 > nat on rl1 from 192.168.5.0/24 to any -> rl1 > rdr on rl0 proto tcp from 192.168.5.0/24 to any port 21 -> 127.0.0.1 80= 21 >=20 > pass in all > pass out all >=20 > . >=20 > In inetd.conf I've enable ftp-proxy with this row: >=20 > ftp-proxy stream tcp nowait root /usr/local/libexec/ftp-proxy ftp-proxy > -u proxy -D 3 >=20 > But when i try to connect on a external ftp server from my pc in LAN, > It doesn't works. Also, if I try to use ftp-proxy with adavanced ftp cl= ient, > like gft, I can connect at ftp-proxy but doesn't work connection on > another ftp. >=20 > Bye. >=20
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?20031203170735.GM14907>