From owner-freebsd-hackers  Tue Jan  8 21:37:43 2002
Delivered-To: freebsd-hackers@freebsd.org
Received: from msslpop1.mssl.uswest.net (msslpop1.mssl.uswest.net [207.225.0.1])
	by hub.freebsd.org (Postfix) with SMTP id B53AE37B41C
	for <hackers@FreeBSD.ORG>; Tue,  8 Jan 2002 21:37:38 -0800 (PST)
Received: (qmail 15268 invoked by alias); 9 Jan 2002 05:37:35 -0000
Delivered-To: fixup-hackers@FreeBSD.ORG@fixme
Received: (qmail 15258 invoked by uid 0); 9 Jan 2002 05:37:34 -0000
Received: from msslapanas13poolb160.mssl.uswest.net (HELO casey.ccmt.net) (63.227.173.160)
  by msslpop1.mssl.uswest.net with SMTP; 9 Jan 2002 05:37:34 -0000
Content-Type: text/plain;
  charset="iso-8859-1"
From: Casey T.Zednick <casey@ccmt.net>
Reply-To: casey@ccmt.net
To: "Julian Stacey" <jhs@bim.bsn.com>
Subject: Re: Which ftpd for proxy ?
Date: Tue, 8 Jan 2002 23:36:13 -0700
X-Mailer: KMail [version 1.2]
References: <200201081700.g08H0wA47685@jhs.muc.de>
In-Reply-To: <200201081700.g08H0wA47685@jhs.muc.de>
Cc: hackers@FreeBSD.ORG
MIME-Version: 1.0
Message-Id: <02010823361300.00562@casey.ccmt.net>
Content-Transfer-Encoding: 8bit
Sender: owner-freebsd-hackers@FreeBSD.ORG
Precedence: bulk
List-ID: <freebsd-hackers.FreeBSD.ORG>
List-Archive: <http://docs.freebsd.org/mail/> (Web Archive)
List-Help: <mailto:majordomo@FreeBSD.ORG?subject=help> (List Instructions)
List-Subscribe: <mailto:majordomo@FreeBSD.ORG?subject=subscribe%20freebsd-hackers>
List-Unsubscribe: <mailto:majordomo@FreeBSD.ORG?subject=unsubscribe%20freebsd-hackers>
X-Loop: FreeBSD.ORG

On Tuesday 08 January 2002 10:00 am, Julian Stacey wrote:
> Hi all,
> Any reccomendations what to install (or avoid) on my firewall,
> from 4.4 /usr/ports/ftp/ to be a proxy ftpd server ?
>
> My Background:
> - I'm not looking for high performance,
>      (it's not a big company, just my home site with some internal hosts).
> - I will have the usual security concerns with the imminent arrival
>   	of a flat rate permanent DSL connection :-)
> - /usr/libexec/ftpd does not (at least did not) support proxy requests.
> - I have apache installed on my firewall & am using FTP_PROXY=http://gate
>   but often remote ports distfile ftpd hosts refuse to serve me,
>   perhaps because my apache is asking remote server on port 80, not ftp
> port.
>

Give /usr/ports/www/squid a try, it can proxy HTTP and FTP.

http://www.squid-cache.org/

Hope this helps, but if I where doing it I would use NAT and block any 
incoming from the outside.  That way you can use other net apps too.

-Casey Z
-- 
This E-mail message was created with Open Source Software.
Using: 
FreeBSD, http://www.freebsd.org
KDE's KMail, http://www.kde.org 
Vist these sites and support O.S.S.

To Unsubscribe: send mail to majordomo@FreeBSD.org
with "unsubscribe freebsd-hackers" in the body of the message