Date: Fri, 31 May 2002 21:58:18 +0200 From: Grzegorz Czaplinski <gregory@prioris.mini.pw.edu.pl> To: Darryl Hoar <darryl@osborne-ind.com> Cc: freebsd-questions@freebsd.org Subject: Re: IPFILTER & FTP Message-ID: <20020531215818.B36456@prioris.mini.pw.edu.pl> In-Reply-To: <000601c208d4$be9f8710$0701a8c0@darryl>; from darryl@osborne-ind.com on Fri, May 31, 2002 at 01:55:33PM -0500 References: <000601c208d4$be9f8710$0701a8c0@darryl>
next in thread | previous in thread | raw e-mail | index | archive | help
--ADZbWkCsHQ7r3kzd Content-Type: text/plain; charset=us-ascii Content-Disposition: inline Content-Transfer-Encoding: quoted-printable Darryl, In /etc/ipnat.rules you should have an entry: map fxp0 192.168.1.0/24 -> external/32 proxy port ftp ftp/tcp Where fxp0 is your extrenal interface, 192.168.1.0/24 local network, and external is external interface. Put this rule before those two: map fxp0 192.168.1.0/24 -> external/32 portmap tcp/udp 20000:30000 map fxp0 192.168.1.0/24 -> external/32 That should help. Have fun. Regards, gregory On Fri, May 31, 2002 at 01:55:33PM -0500, Darryl Hoar wrote: > Greetings, > I have a 4.5 box setup running IPFilter. It is the firewall to my LAN, a= nd > also does NAT. >=20 > The problem I have is when I try to ftp to a server, it logs me in OK to = the > ftp> prompt. > When I do an ls, it > 220 Entering Passive Mode (my private ip 192.168.1,101) > and just hangs. >=20 > Do I need to add a rule in my IPFilters on my firewall to allow my comput= er > to ftp > another computer (on the internet)? >=20 > Any ideas? >=20 > thanks, > Darryl >=20 >=20 > To Unsubscribe: send mail to majordomo@FreeBSD.org > with "unsubscribe freebsd-questions" in the body of the message --=20 Grzegorz Czaplinski <gregory@prioris.mini.pw.edu.pl> "The Power to Serve, Right for the Power Users!" - http://www.FreeBSD.org/ Fingerprint: EB77 E19D CFA2 5736 810F 847C A70F A275 2489 469F --ADZbWkCsHQ7r3kzd Content-Type: application/pgp-signature Content-Disposition: inline -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.0.6 (FreeBSD) Comment: For info see http://www.gnupg.org iEYEARECAAYFAjz31doACgkQpw+idSSJRp8voQCgkpOK+lM97AgAZJPsvLZensjm 5K8AoKoN9Tu+b4PjWd0NEZ0GM965Sdn1 =ro2P -----END PGP SIGNATURE----- --ADZbWkCsHQ7r3kzd-- To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-questions" in the body of the message
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?20020531215818.B36456>