From owner-freebsd-questions Wed Mar 1 18:32:16 2000 Delivered-To: freebsd-questions@freebsd.org Received: from cytosine.dhs.org (cx272244-a.orng1.occa.home.com [24.1.177.149]) by hub.freebsd.org (Postfix) with ESMTP id DCC5A37BF11 for ; Wed, 1 Mar 2000 18:32:13 -0800 (PST) (envelope-from bhishan@cytosine.dhs.org) Received: (from bhishan@localhost) by cytosine.dhs.org (8.9.3/8.9.3) id SAA16995; Wed, 1 Mar 2000 18:32:06 -0800 (PST) (envelope-from bhishan) From: Bhishan Hemrajani Message-Id: <200003020232.SAA16995@cytosine.dhs.org> Subject: Re: Having a Problem with NAT and FTP In-Reply-To: <00c601bf83ef$38cb4050$0201a8c0@rp.com> from Richard at "Mar 1, 2000 06:30:04 pm" To: Richard Date: Wed, 1 Mar 2000 18:32:06 -0800 (PST) Cc: freebsd-questions@FreeBSD.ORG X-Mailer: ELM [version 2.4ME+ PL68 (25)] MIME-Version: 1.0 Content-Type: text/plain; charset=US-ASCII Content-Transfer-Encoding: 7bit Sender: owner-freebsd-questions@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.ORG You also might want to try and get the natd source from linux, and try to install that. Maybe that will work better for you. --bhishan [Charset iso-8859-1 unsupported, filtering to ASCII...] > Thank you. Your answer makes sense. Funny thing though, I had a LINUX > Box before the FreeBSD firewall and LINUX's masquerading was able to do > it. I guess, there are advantages and disadvantages to every OS. > > Thanks > -- > LINUX/UNIX/NT Consultant/Administrator > Richard Pouncy Voice: 310-213-4RTS > ICQ# : 31450231 > http://www.rtscomputer.net > ----- Original Message ----- > From: "Bhishan Hemrajani" > To: "Richard" > Cc: > Sent: Wednesday, March 01, 2000 6:19 PM > Subject: Re: Having a Problem with NAT and FTP > > > > This is unavoidable. For some ftp servers, you will not have to do > > this. But rarely, some you will. > > > > The reason for this, is that when an ftp server sends a directory > > listing it sends it to a specified port. However, nat on the host > > computer doesn't know to open the port. Therefore, you don't get > > the listing and the ftp server idles out. > > > > PASV makes the client establish a connection to the server, therefore > > nat knows to open the port because the client told it to. > > > > Hope this helps. > > > > --bhishan > > > > [Charset iso-8859-1 unsupported, filtering to ASCII...] > > > Hello All, > > > > > > I have FreeBSD's Network Address Translation (NAT) working very well > > > with HTTP, SMTP and others, but I'm have a problem getting FTP to > work > > > correctly. In order to FTP from a workstation on the LAN, the FTP > > > client has to be place in passive mode. Otherwise, they just sit > there. > > > > > > I have the following enable in my rc.firewall script. > > > > > > if [ "X${natd_enable}" = X"YES" -a "X${natd_interface}" != X"" ]; > then > > > $fwcmd add divert natd all from any to any via > ${natd_interface} > > > fi > > > > > > > > > Thanks. > > > -- > > > LINUX/UNIX/NT Consultant/Administrator > > > Richard Pouncy Voice: 310-213-4RTS > > > ICQ# : 31450231 > > > http://www.rtscomputer.net > > > > > > > > > > > > To Unsubscribe: send mail to majordomo@FreeBSD.org > > > with "unsubscribe freebsd-questions" in the body of the message > > > > > > > > > > > To Unsubscribe: send mail to majordomo@FreeBSD.org > > with "unsubscribe freebsd-questions" in the body of the message > > > > > > To Unsubscribe: send mail to majordomo@FreeBSD.org > with "unsubscribe freebsd-questions" in the body of the message > To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-questions" in the body of the message