From owner-freebsd-questions@FreeBSD.ORG  Thu Apr 17 04:59:22 2008
Return-Path: <owner-freebsd-questions@FreeBSD.ORG>
Delivered-To: freebsd-questions@freebsd.org
Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2001:4f8:fff6::34])
	by hub.freebsd.org (Postfix) with ESMTP id F0F851065720
	for <freebsd-questions@freebsd.org>;
	Thu, 17 Apr 2008 04:59:21 +0000 (UTC)
	(envelope-from sonicy@otenet.gr)
Received: from rosebud.otenet.gr (rosebud.otenet.gr [195.170.0.94])
	by mx1.freebsd.org (Postfix) with ESMTP id 8F4BB8FC1A
	for <freebsd-questions@freebsd.org>;
	Thu, 17 Apr 2008 04:59:20 +0000 (UTC)
	(envelope-from sonicy@otenet.gr)
Received: from [192.168.0.1] (athedsl-84244.home.otenet.gr [87.203.82.98])
	by rosebud.otenet.gr (8.13.8/8.13.8/Debian-3) with ESMTP id
	m3H4xHS0032351; Thu, 17 Apr 2008 07:59:17 +0300
Message-ID: <4806D928.1070500@otenet.gr>
Date: Thu, 17 Apr 2008 07:59:20 +0300
From: Manolis Kiagias <sonicy@otenet.gr>
User-Agent: Thunderbird 2.0.0.12 (X11/20080227)
MIME-Version: 1.0
To: Gilles <gilles.ganault@free.fr>
References: <hq9d04lrm3bocphdo0msfnh5pnfved0ar2@4ax.com>	<4806B0A0.7000902@radel.com>
	<uidd04l3l76f1gd2bt1f9eq2gcojuctcgp@4ax.com>
In-Reply-To: <uidd04l3l76f1gd2bt1f9eq2gcojuctcgp@4ax.com>
Content-Type: text/plain; charset=ISO-8859-1; format=flowed
Content-Transfer-Encoding: 7bit
Cc: freebsd-questions@freebsd.org
Subject: Re: FTP server behind firewall?
X-BeenThere: freebsd-questions@freebsd.org
X-Mailman-Version: 2.1.5
Precedence: list
List-Id: User questions <freebsd-questions.freebsd.org>
List-Unsubscribe: <http://lists.freebsd.org/mailman/listinfo/freebsd-questions>, 
	<mailto:freebsd-questions-request@freebsd.org?subject=unsubscribe>
List-Archive: <http://lists.freebsd.org/pipermail/freebsd-questions>
List-Post: <mailto:freebsd-questions@freebsd.org>
List-Help: <mailto:freebsd-questions-request@freebsd.org?subject=help>
List-Subscribe: <http://lists.freebsd.org/mailman/listinfo/freebsd-questions>, 
	<mailto:freebsd-questions-request@freebsd.org?subject=subscribe>
X-List-Received-Date: Thu, 17 Apr 2008 04:59:23 -0000

Gilles wrote:
> On Wed, 16 Apr 2008 22:06:24 -0400, Jon Radel <jon@radel.com> wrote:
>   
>> What control do you have over the firewall?  One of the cleaner
>> solutions would be to run an ftp proxy on the firewall, such as that
>> supplied with pf.  See ftp-proxy(8) or
>> http://www.openbsd.org/faq/pf/ftp.html
>>     
>
> Unfortunately, the router/NAT firewall can be neither replaced nor
> tweaked, since it's a modem/router provided by our ISP.
>
> Actually, we don't necessarily need an FTP. Whatever solution to send
> files is fine, provided I can add this feature in a VB Classic client
> application.
>
>
>   
Running an FTP behind a home DSL router is perfectly possible. You will 
just have to open a range of ports on the router itself eg 25000-25050 
and forward them to your ftp server internal IP address. Then set the 
FTP server to only use these ports for passive transfers.

For example, I am using ftp/proftpd and have this directive in the 
configuration file:

PassivePorts 25000-25050

You will, of course, need to forward port 21 as well.