Date: Wed, 1 Mar 2000 18:19:27 -0800 (PST) From: Bhishan Hemrajani <bhishan@cytosine.dhs.org> To: Richard <mailsrv@rtscomputer.net> Cc: freebsd-questions@FreeBSD.ORG Subject: Re: Having a Problem with NAT and FTP Message-ID: <200003020219.SAA16858@cytosine.dhs.org> In-Reply-To: <006a01bf83e8$61db8150$0201a8c0@rp.com> from Richard at "Mar 1, 2000 05:41:07 pm"
next in thread | previous in thread | raw e-mail | index | archive | help
This is unavoidable. For some ftp servers, you will not have to do
this. But rarely, some you will.
The reason for this, is that when an ftp server sends a directory
listing it sends it to a specified port. However, nat on the host
computer doesn't know to open the port. Therefore, you don't get
the listing and the ftp server idles out.
PASV makes the client establish a connection to the server, therefore
nat knows to open the port because the client told it to.
Hope this helps.
--bhishan
[Charset iso-8859-1 unsupported, filtering to ASCII...]
> Hello All,
>
> I have FreeBSD's Network Address Translation (NAT) working very well
> with HTTP, SMTP and others, but I'm have a problem getting FTP to work
> correctly. In order to FTP from a workstation on the LAN, the FTP
> client has to be place in passive mode. Otherwise, they just sit there.
>
> I have the following enable in my rc.firewall script.
>
> if [ "X${natd_enable}" = X"YES" -a "X${natd_interface}" != X"" ]; then
> $fwcmd add divert natd all from any to any via ${natd_interface}
> fi
>
>
> Thanks.
> --
> LINUX/UNIX/NT Consultant/Administrator
> Richard Pouncy Voice: 310-213-4RTS
> ICQ# : 31450231
> http://www.rtscomputer.net
>
>
>
> To Unsubscribe: send mail to majordomo@FreeBSD.org
> with "unsubscribe freebsd-questions" in the body of the message
>
To Unsubscribe: send mail to majordomo@FreeBSD.org
with "unsubscribe freebsd-questions" in the body of the message
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?200003020219.SAA16858>