From owner-freebsd-isp@FreeBSD.ORG Tue Jul 20 18:30:10 2004 Return-Path: Delivered-To: freebsd-isp@freebsd.org Received: from mx1.FreeBSD.org (mx1.freebsd.org [216.136.204.125]) by hub.freebsd.org (Postfix) with ESMTP id C7A6F16A4CE for ; Tue, 20 Jul 2004 18:30:10 +0000 (GMT) Received: from admin.wolfpaw.net (admin.wolfpaw.net [204.209.44.9]) by mx1.FreeBSD.org (Postfix) with SMTP id 862C643D60 for ; Tue, 20 Jul 2004 18:30:10 +0000 (GMT) (envelope-from admin-lists@wolfpaw.net) Received: (qmail 11408 invoked from network); 20 Jul 2004 18:30:09 -0000 Received: from fw1-corp01.wolfpaw.net (HELO wolf) (142.179.166.184) by admin.wolfpaw.net with SMTP; 20 Jul 2004 18:30:09 -0000 From: "Wolfpaw - Dale Corse" To: "'CPU Customer Support'" , Date: Tue, 20 Jul 2004 12:50:03 -0600 Message-ID: <000001c46e8a$5e515ff0$0600a8c0@wolf> MIME-Version: 1.0 Content-Type: text/plain; charset="us-ascii" Content-Transfer-Encoding: 7bit X-Priority: 3 (Normal) X-MSMail-Priority: Normal X-Mailer: Microsoft Outlook, Build 10.0.6626 In-Reply-To: <00c001c46e73$aa853ed0$65c45741@don> Importance: Normal X-MimeOLE: Produced By Microsoft MimeOLE V6.00.2800.1441 Subject: RE: bridging firewall => proftpd issue. X-BeenThere: freebsd-isp@freebsd.org X-Mailman-Version: 2.1.1 Precedence: list List-Id: Internet Services Providers List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Tue, 20 Jul 2004 18:30:11 -0000 Has he tried using PASV? The port is coming from 192.168.100.3 .. Not from his real IP. Likely he has some kind of firewall now.. And that is causing the issue. I don't think its your end.. Bridges don't change The IP address (Unless your using nat).. So it wouldn't likely be you. D. -------------------------------- Dale Corse System Administrator Wolfpaw Services Inc. http://www.wolfpaw.net (780) 474-4095 > -----Original Message----- > From: owner-freebsd-isp@freebsd.org > [mailto:owner-freebsd-isp@freebsd.org] On Behalf Of CPU > Customer Support > Sent: Tuesday, July 20, 2004 10:07 AM > To: freebsd-isp@freebsd.org > Subject: bridging firewall => proftpd issue. > > > The isp I administrate is running a full set of Redhat 9 > servers. (Not my choice) But, as I just took over the > position recently, I have been upgrading the security all > around. In doing this I've installed a Bridging firewall > running FreeBSD 4.9 compiled for the security branch, and > IPFW. It seems that just as I installed this firewall, a > customer is no longer able to ftp into our main Redhat > machine. The redhat machine is running Proftpd 1.2.9. > > The issue: > > The user can log in and authenticate. It successfully > authenticates his password as it should, but then when he > tries to get a directory listing it bombs. It looks at first > like a passive/active issue, but, I've opened the appropriate > ports on the firewall, and even assigned the passive ports in > Proftpd. He has tried passive and active modes both, with > the same results. Mind you all other customers do not have > any issues. > > Session Transcript: > > Jul 19 17:24:04 host04 proftpd[32507]: cpu-net.com > (70-240-21-3.ded.swbell.net[70.240.21.3]) - FTP session > opened. Jul 19 17:24:04 host04 proftpd[32507]: cpu-net.com > (70-240-21-3.ded.swbell.net[70.240.21.3]) - USER > **usersname**: Login successful. Jul 19 17:24:04 host04 > proftpd[32507]: cpu-net.com > (70-240-21-3.ded.swbell.net[70.240.21.3]) - Refused PORT > 192,168,100,3,8,118 (address mismatch) Jul 19 17:24:13 host04 > proftpd[32507]: cpu-net.com > (70-240-21-3.ded.swbell.net[70.240.21.3]) - FTP session closed. > > The ip range that he's coming from was just recently issued > by SBC recently. I've also tried opening all ports and ips > to this ip address for him. To no avail. > > The customer did not have any issues prior to installing the > Freebsd firewall/bridge. He was also using the current ip > address prior as well. > > If anyone has a figment of a clue, it would be worlds of help to me. > > Thank you, > Don Mohlmaster > CPU-NET.com, Inc. Systems Administrator. > _______________________________________________ > freebsd-isp@freebsd.org mailing list > http://lists.freebsd.org/mailman/listinfo/freebsd-isp > To unsubscribe, send any mail to "freebsd-isp-unsubscribe@freebsd.org" > > -------------------------------------------------------------- > --------------- > This message has been scanned for Spam and Viruses by ClamAV > and SpamAssassin > -------------------------------------------------------------- > --------------- > >