Date: Thu, 16 Sep 2004 03:57:49 -0000 From: Pyun YongHyeon <yongari@kt-is.co.kr> To: pf4freebsd@freelists.org Subject: [pf4freebsd] Re: Problem with ftp-proxy. Message-ID: <20031203122714.GA817@kt-is.co.kr> In-Reply-To: <20031203113200.780a87da.matteo.niccoli@finsystem.net> References: <20031203113200.780a87da.matteo.niccoli@finsystem.net>
next in thread | previous in thread | raw e-mail | index | archive | help
On Wed, Dec 03, 2003 at 11:32:00AM +0000, Matteo Niccoli wrote:
> Hi,
>=20
> I'm using pf 2.0 on a FreeBSD 5.1 box. It works fine, but I have=20
> problem with ftp-proxy.
>=20
> This is my pf.conf
>=20
> nat on rl1 from 192.168.5.0/24 to any -> rl1
> rdr on rl0 proto tcp from 192.168.5.0/24 to any port 21 -> 127.0.0.1 8=
021
>=20
> pass in all
> pass out all
>=20
> .
>=20
> In inetd.conf I've enable ftp-proxy with this row:
>=20
> ftp-proxy stream tcp nowait root /usr/local/libexec/ftp-proxy ftp-prox=
y
> -u proxy -D 3
>=20
> But when i try to connect on a external ftp server from my pc in LAN,
> It doesn't works. Also, if I try to use ftp-proxy with adavanced ftp c=
lient,
> like gft, I can connect at ftp-proxy but doesn't work connection on
> another ftp.
>=20
It's not reproduable here. Both active and passive mode client works
well with ftp-proxy.(I don't know what advanced ftp client means. I
believe lukemftp is more RFC complient and has many useful features.)
rdr on rl0 proto tcp from 192.168.5.0/24 to any port 21 -> 127.0.0.1 8021
^^^^^
The above rule should be read as the following.
rdr on rl0 proto tcp from 192.168.5.0/24 to any port 21 -> 127.0.0.1 port=
8021
In case of ftp-proxy errors, both /var/log/messages and /var/log/debug.lo=
g
would have recoreded errors. And you should have user 'proxy' and group
'proxy'.
> Bye.
>=20
Thanks.
Regards,
Pyun YongHyeon
--=20
Pyun YongHyeon <http://www.kr.freebsd.org/~yongari>;
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?20031203122714.GA817>