From owner-freebsd-questions@FreeBSD.ORG Wed May 10 11:01:41 2006 Return-Path: X-Original-To: freebsd-questions@freebsd.org Delivered-To: freebsd-questions@freebsd.org Received: from mx1.FreeBSD.org (mx1.freebsd.org [216.136.204.125]) by hub.freebsd.org (Postfix) with ESMTP id 2193516A40E for ; Wed, 10 May 2006 11:01:41 +0000 (UTC) (envelope-from trobalo@mrna.ist.utl.pt) Received: from smtp1.ist.utl.pt (smtp1.ist.utl.pt [193.136.128.21]) by mx1.FreeBSD.org (Postfix) with ESMTP id C7E6E43D45 for ; Wed, 10 May 2006 11:01:39 +0000 (GMT) (envelope-from trobalo@mrna.ist.utl.pt) Received: from localhost (localhost.localdomain [127.0.0.1]) by smtp1.ist.utl.pt (Postfix) with ESMTP id BFED97000556 for ; Wed, 10 May 2006 12:01:34 +0100 (WEST) Received: from smtp1.ist.utl.pt ([127.0.0.1]) by localhost (smtp1 [127.0.0.1]) (amavisd-new, port 10025) with LMTP id 29447-01-13 for ; Wed, 10 May 2006 12:01:34 +0100 (WEST) Received: from mrna.ist.utl.pt (mRNA.ist.utl.pt [193.136.165.100]) by smtp1.ist.utl.pt (Postfix) with ESMTP id 95E007000A36 for ; Wed, 10 May 2006 12:01:34 +0100 (WEST) Received: from Ribossoma.ist.utl.pt (Ribossoma.ist.utl.pt [193.136.165.125]) by mrna.ist.utl.pt (Horde MIME library) with HTTP; Wed, 10 May 2006 13:01:33 +0200 Message-ID: <20060510130133.o8foxi2u808cwg80@mrna.ist.utl.pt> Date: Wed, 10 May 2006 13:01:33 +0200 From: trobalo@mrna.ist.utl.pt To: freebsd-questions@freebsd.org References: In-Reply-To: MIME-Version: 1.0 Content-Type: text/plain; charset=ISO-8859-1; DelSp="Yes"; format="flowed" Content-Disposition: inline Content-Transfer-Encoding: quoted-printable User-Agent: Internet Messaging Program (IMP) H3 (4.1) / FreeBSD-6.0 X-Virus-Scanned: by amavisd-new-20030616-p10 (Debian) at ist.utl.pt Subject: proftpd & jail X-BeenThere: freebsd-questions@freebsd.org X-Mailman-Version: 2.1.5 Precedence: list List-Id: User questions List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Wed, 10 May 2006 11:01:41 -0000 we have a problem with proftp running in a jail -> pf.conf ext_if=3D"em0" ip_ext=3D"*.*.*.*" ip_jail=3D"127.0.0.3" rdr on $ext_if proto tcp from any to $ip_ext port 20 -> $ip_jail port 20 rdr on $ext_if proto tcp from any to $ip_ext port 21 -> $ip_jail port 21 rdr on $ext_if proto tcp from any to $ip_ext port 49152:52000 -> $ip_jail port 49152:52000 pass in log quick on $ext_if proto tcp from any to $ip_jail port 20 flags S/SAFR keep state pass in log quick on $ext_if proto tcp from any to $ip_jail port 21 flags S/SAFR keep state pass in log quick on $ext_if proto tcp from any to $ip_jail port 49151 >< 52001 pass out log quick on $ext_if proto tcp from $ip_jail port 49151 >< 52001 to any -> proftpd.conf ServerName "SERVER X" ServerType standalone DefaultServer on ScoreboardFile /var/run/proftpd.scoreboard ExtendedLog /var/log/proftpd.log AllowForeignAddress on PassivePorts 49152 52000 IdentLookups off DisplayConnect /etc/motd Port 21 Umask 022 MaxInstances 30 User nobody Group nogroup AllowOverwrite on DenyAll -> proftp log: *.*.*.* UNKNOWN test [09/May/2006:10:36:23 +0100] "NOOP" 200 - *.*.*.* UNKNOWN test [09/May/2006:10:36:23 +0100] "CWD /usr/home/teste/" 250 - *.*.*.* UNKNOWN test [09/May/2006:10:36:23 +0100] "TYPE A" 200 - *.*.*.* UNKNOWN test [09/May/2006:10:36:23 +0100] "PASV" 227 - *.*.*.* UNKNOWN test [09/May/2006:10:36:24 +0100] "USER anonymous" 331 - *.*.*.* UNKNOWN nobody [09/May/2006:10:36:24 +0100] "PASS (hidden)" 530 - *.*.*.* UNKNOWN test [09/May/2006:10:36:24 +0100] "NOOP" 200 - *.*.*.* UNKNOWN test [09/May/2006:10:36:24 +0100] "CWD /usr/home/test/" 250 - *.*.*.* UNKNOWN test [09/May/2006:10:36:24 +0100] "TYPE A" 200 - *.*.*.* UNKNOWN test [09/May/2006:10:36:24 +0100] "PASV" 227 - *.*.*.* UNKNOWN nobody [09/May/2006:10:36:27 +0100] "USER test" 331 - *.*.*.* UNKNOWN test [09/May/2006:10:36:27 +0100] "PASS (hidden)" 230 - *.*.*.* UNKNOWN test [09/May/2006:10:36:27 +0100] "OPTS utf8 on" 501 - *.*.*.* UNKNOWN test [09/May/2006:10:36:27 +0100] "PWD" 257 - *.*.*.* UNKNOWN test [09/May/2006:10:36:27 +0100] "NOOP" 200 - *.*.*.* UNKNOWN test [09/May/2006:10:36:27 +0100] "CWD /usr/home/test/" 250 - *.*.*.* UNKNOWN test [09/May/2006:10:36:27 +0100] "TYPE A" 200 - *.*.*.* UNKNOWN test [09/May/2006:10:36:27 +0100] "PASV" 227 - If we use ftp browse (firefox, IE) or ms-dos we can?t open ftp contents, it appears the login window but after that show this error: "An error occurred opening that folder on the FTP Server. Make sure that you have permission to access that folder drwx------ 3 test wheel 512 May 8 18:48 teste using chmod 777 the error continues. sugestions? thanks a lot