Date: Wed, 12 Jan 2011 08:14:54 +0200 From: Artyom Viklenko <artem@aws-net.org.ua> To: Brett Glass <brett@lariat.net> Cc: net@freebsd.org Subject: Re: IPFW firewall NAT and active FTP Message-ID: <4D2D46DE.70101@aws-net.org.ua> In-Reply-To: <201101112306.QAA29979@lariat.net> References: <201101112306.QAA29979@lariat.net>
next in thread | previous in thread | raw e-mail | index | archive | help
12.01.2011 01:06, Brett Glass пишет: > I'm working with a customer who has a FreeBSD 8.0 firewall, set up with firewall > NAT in IPFW. It uses one-to-one static NAT to redirect FTP sessions > originating on the outside to an FTP server on the inside. The FTP server is > accessible via text-based FTP clients, but not via Web-based clients such as > Mozilla Firefox or Internet Explorer. The internal FTP server is also a FreeBSD > machine. > Does FTP server enforces any limits for sessions per ip? In past I saw that IE can open up to four concurrent sessions. If plain text ftp clients works, IMHO it's not a NAT problem. Also check config of ipfw is it supports both active and passive FTP transfers. > He's wondering if the problem has to do with the lack of a "firewall punching" > setting (which exists in natd but not in IPFW's built-in NAT). Can anyone > suggest what might be causing the problem? > > --Brett Glass > _______________________________________________ > freebsd-net@freebsd.org mailing list > http://lists.freebsd.org/mailman/listinfo/freebsd-net > To unsubscribe, send any mail to "freebsd-net-unsubscribe@freebsd.org" -- Sincerely yours, Artyom Viklenko. ------------------------------------------------------- artem@aws-net.org.ua | http://www.aws-net.org.ua/~artem artem@viklenko.net | JID: artem@jabber.aws-net.org.ua FreeBSD: The Power to Serve - http://www.freebsd.org
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?4D2D46DE.70101>