Date: Fri, 1 Jun 2007 16:09:05 -0300 From: "Gilberto Villani Brito" <linux@giboia.org> To: "FreeBSD (PF)" <freebsd-pf@freebsd.org> Subject: Re: Problem to access FTP server Message-ID: <6e6841490706011209t589558c1xfa49cd0a663f8ea3@mail.gmail.com> In-Reply-To: <ef7327bc0705310218q54b02e4w357e2d5a6c41268e@mail.gmail.com> References: <ef7327bc0705310218q54b02e4w357e2d5a6c41268e@mail.gmail.com>
next in thread | previous in thread | raw e-mail | index | archive | help
On 31/05/07, Mahabub Basha <mahabubbasha@gmail.com> wrote: > Hi all, > > I am a newbie for freebsd. I am using freebsd 6.1. I have some problem to > access ftp server through external ip behind a pf firewall. > > I can access my ftp server through active mode , but not working in passive > mode. > > My ruleset file is in the following: > > ====================================================================== > pf.conf > ====================================================================== > lan = "port2" > wan = "port1" > > # User BiNAT Rules > binat on $wan from 10.0.0.10 to any -> 172.16.1.10 > > # User RDR Rules > rdr on $wan from any to 172.16.1.10 -> 10.0.0.10 > > # User Filter Rules > pass all > > ========================================================================= > > my lan ip address is 10.0.0.10 and my wan ip is 172.16.1.10 > > I just put above three rules. And run my ftp server using inetd. > > I used core-ftp client in windows xp to connect my ftp server machine , in > active mode its working fine. > > But in passive mode its not working. > > Before i asked this problem here, i read the following links and try out the > same. but its not working. > > ===================================================================== > http://www.openbsd.org/faq/pf/ftp.html > > http://article.gmane.org/gmane.os.freebsd.devel.pf4freebsd/2952/match=issues+ftp+windows+pf > ===================================================================== > > I want to use binat rule. > > can anyone help me to solve this issue. > > - Mahabub Basha.S > _______________________________________________ > freebsd-pf@freebsd.org mailing list > http://lists.freebsd.org/mailman/listinfo/freebsd-pf > To unsubscribe, send any mail to "freebsd-pf-unsubscribe@freebsd.org" > Hi, First, try exclude: rdr on $wan from any to 172.16.1.10 -> 10.0.0.10 because you are using binat, so try to use ftp on passive mode. If it doens't work, tray to use ftp-proxy (http://www.openbsd.org/faq/pf/ftp.html). -- Gilberto Villani Brito System Administrator Londrina - PR Brazil gilbertovb(a)gmail.com
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?6e6841490706011209t589558c1xfa49cd0a663f8ea3>