Date: Fri, 7 Mar 2014 19:57:19 +0100 From: "O. Hartmann" <ohartman@zedat.fu-berlin.de> To: FreeBSD CURRENT <freebsd-current@freebsd.org> Subject: ipfw: fetch doesn't reach ftp://fttp.sites.foo Message-ID: <20140307195719.654653c9.ohartman@zedat.fu-berlin.de>
index | next in thread | raw e-mail
[-- Attachment #1 --] Recently I swaitched from pf to ipfw on some CURRENT boxes and for convenience I used the "workstation" predefinition of FreeBSD. But with that change, all access of ports via fetch located at ftp-sites stopped passing the filter. Even switching to "open" doesn't help and this is confusing me. The CURRENT box in question is passing its traffic within a LAN through a gateway running also FreeBSD CURRENT, but with pf. The gateway is performing NAT. As long as the failing client behind the gateway system is using pf as the filter, the traffic for ftp seems to pass through. On the gateway with pf as the default filter, the ports fetching via ftp-site their sources perform without problems. What is up with IPFW? Is their a solution? I tried to search google for "freebsd ipfw ftp" but I didn't find anything suitable targeting my problem or any problem of that kind. Thanks in adavance, Oliver [-- Attachment #2 --] -----BEGIN PGP SIGNATURE----- Version: GnuPG v2.0.22 (FreeBSD) iQEcBAEBAgAGBQJTGhaTAAoJEOgBcD7A/5N8gr8IAOcpMKIpGH0nZvIcFrcdE946 E0nEjcOAVqosj48FzX6K+sA/MPzGCTVaeQJyxpylNrB8NUATmn5opgem0evEhduD KJBrH1Md5b/uAzqxc68kl0li7j8gOHpQ4gjIhmbwhs+Bn2NJM7kdy6jvfcLLKThO 2MKVy1QNYBou5DdvqNhriXT9xJfzCTCntK7u/oopSBGKps9YTSgY8i39fJAxnj/o IwY1+AN+qtUCVe9JTH6GoltwFVkrNspBTGT3nzGTYcs5lEtobsDJ5eGCZdmaTVU6 ek2E9SEN1fLKBOSyI2fgogS4dwvxRLg86ZvxjwbM6PGpJ3C6NopptT42aZPH2H4= =vRnN -----END PGP SIGNATURE-----help
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?20140307195719.654653c9.ohartman>