Date: Wed, 13 Jun 2001 11:34:56 +0300 From: Ruslan Ermilov <ru@FreeBSD.ORG> To: edwin chan <slack@suntop-cn.com> Cc: freebsd-questions@FreeBSD.ORG Subject: Re: about natd punch-fw function Message-ID: <20010613113456.G35383@sunbay.com> In-Reply-To: <006c01c0f34e$9b1c5da0$9201a8c0@home.net>; from slack@suntop-cn.com on Tue, Jun 12, 2001 at 10:47:22PM %2B0800 References: <006c01c0f34e$9b1c5da0$9201a8c0@home.net>
next in thread | previous in thread | raw e-mail | index | archive | help
On Tue, Jun 12, 2001 at 10:47:22PM +0800, edwin chan wrote: > Hi > I can't understand what punch-fw options do, and how it works ? anybody > can teach me some about ? > > attention: please include my e-mail address in reply, I not order this > maillist. > Basically, for FTP, the libalias code intercepts PORT command, aliases it, and installs temporary firewall rule that allows incoming connection from the server's TCP port 20 to come through. After the connection is dropped, the firewall rule is deleted. Better viewed in action, just try it with ftp(1) behind FireWall+NAT box (don't forget to turn the passive mode off). Cheers, -- Ruslan Ermilov Oracle Developer/DBA, ru@sunbay.com Sunbay Software AG, ru@FreeBSD.org FreeBSD committer, +380.652.512.251 Simferopol, Ukraine http://www.FreeBSD.org The Power To Serve http://www.oracle.com Enabling The Information Age To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-questions" in the body of the message
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?20010613113456.G35383>