From owner-freebsd-questions  Wed Mar  1 18:19:44 2000
Delivered-To: freebsd-questions@freebsd.org
Received: from cytosine.dhs.org (cx272244-a.orng1.occa.home.com [24.1.177.149])
	by hub.freebsd.org (Postfix) with ESMTP id DFCF237BF01
	for <freebsd-questions@FreeBSD.ORG>; Wed,  1 Mar 2000 18:19:41 -0800 (PST)
	(envelope-from bhishan@cytosine.dhs.org)
Received: (from bhishan@localhost)
	by cytosine.dhs.org (8.9.3/8.9.3) id SAA16858;
	Wed, 1 Mar 2000 18:19:28 -0800 (PST)
	(envelope-from bhishan)
From: Bhishan Hemrajani <bhishan@cytosine.dhs.org>
Message-Id: <200003020219.SAA16858@cytosine.dhs.org>
Subject: Re: Having a Problem with NAT and FTP
In-Reply-To: <006a01bf83e8$61db8150$0201a8c0@rp.com> from Richard at "Mar 1,
 2000 05:41:07 pm"
To: Richard <mailsrv@rtscomputer.net>
Date: Wed, 1 Mar 2000 18:19:27 -0800 (PST)
Cc: freebsd-questions@FreeBSD.ORG
X-Mailer: ELM [version 2.4ME+ PL68 (25)]
MIME-Version: 1.0
Content-Type: text/plain; charset=US-ASCII
Content-Transfer-Encoding: 7bit
Sender: owner-freebsd-questions@FreeBSD.ORG
Precedence: bulk
X-Loop: FreeBSD.ORG

This is unavoidable. For some ftp servers, you will not have to do
this. But rarely, some you will.

The reason for this, is that when an ftp server sends a directory
listing it sends it to a specified port. However, nat on the host
computer doesn't know to open the port. Therefore, you don't get
the listing and the ftp server idles out.

PASV makes the client establish a connection to the server, therefore
nat knows to open the port because the client told it to.

Hope this helps.

--bhishan

[Charset iso-8859-1 unsupported, filtering to ASCII...]
> Hello All,
> 
> I have FreeBSD's Network Address Translation (NAT) working very well
> with HTTP, SMTP and others, but I'm have a problem getting FTP to work
> correctly.  In order to FTP from a workstation on the LAN, the FTP
> client has to be place in passive mode. Otherwise, they just sit there.
> 
> I have the following enable in my rc.firewall script.
> 
> if [ "X${natd_enable}" = X"YES" -a "X${natd_interface}" != X"" ]; then
>         $fwcmd add divert natd all from any to any via ${natd_interface}
> fi
> 
> 
> Thanks.
> --
> LINUX/UNIX/NT Consultant/Administrator
> Richard Pouncy          Voice: 310-213-4RTS
> ICQ# : 31450231
> http://www.rtscomputer.net
> 
> 
> 
> To Unsubscribe: send mail to majordomo@FreeBSD.org
> with "unsubscribe freebsd-questions" in the body of the message
> 



To Unsubscribe: send mail to majordomo@FreeBSD.org
with "unsubscribe freebsd-questions" in the body of the message