From owner-freebsd-hackers Tue Jan 8 21:37:43 2002 Delivered-To: freebsd-hackers@freebsd.org Received: from msslpop1.mssl.uswest.net (msslpop1.mssl.uswest.net [207.225.0.1]) by hub.freebsd.org (Postfix) with SMTP id B53AE37B41C for <hackers@FreeBSD.ORG>; Tue, 8 Jan 2002 21:37:38 -0800 (PST) Received: (qmail 15268 invoked by alias); 9 Jan 2002 05:37:35 -0000 Delivered-To: fixup-hackers@FreeBSD.ORG@fixme Received: (qmail 15258 invoked by uid 0); 9 Jan 2002 05:37:34 -0000 Received: from msslapanas13poolb160.mssl.uswest.net (HELO casey.ccmt.net) (63.227.173.160) by msslpop1.mssl.uswest.net with SMTP; 9 Jan 2002 05:37:34 -0000 Content-Type: text/plain; charset="iso-8859-1" From: Casey T.Zednick <casey@ccmt.net> Reply-To: casey@ccmt.net To: "Julian Stacey" <jhs@bim.bsn.com> Subject: Re: Which ftpd for proxy ? Date: Tue, 8 Jan 2002 23:36:13 -0700 X-Mailer: KMail [version 1.2] References: <200201081700.g08H0wA47685@jhs.muc.de> In-Reply-To: <200201081700.g08H0wA47685@jhs.muc.de> Cc: hackers@FreeBSD.ORG MIME-Version: 1.0 Message-Id: <02010823361300.00562@casey.ccmt.net> Content-Transfer-Encoding: 8bit Sender: owner-freebsd-hackers@FreeBSD.ORG Precedence: bulk List-ID: <freebsd-hackers.FreeBSD.ORG> List-Archive: <http://docs.freebsd.org/mail/> (Web Archive) List-Help: <mailto:majordomo@FreeBSD.ORG?subject=help> (List Instructions) List-Subscribe: <mailto:majordomo@FreeBSD.ORG?subject=subscribe%20freebsd-hackers> List-Unsubscribe: <mailto:majordomo@FreeBSD.ORG?subject=unsubscribe%20freebsd-hackers> X-Loop: FreeBSD.ORG On Tuesday 08 January 2002 10:00 am, Julian Stacey wrote: > Hi all, > Any reccomendations what to install (or avoid) on my firewall, > from 4.4 /usr/ports/ftp/ to be a proxy ftpd server ? > > My Background: > - I'm not looking for high performance, > (it's not a big company, just my home site with some internal hosts). > - I will have the usual security concerns with the imminent arrival > of a flat rate permanent DSL connection :-) > - /usr/libexec/ftpd does not (at least did not) support proxy requests. > - I have apache installed on my firewall & am using FTP_PROXY=http://gate > but often remote ports distfile ftpd hosts refuse to serve me, > perhaps because my apache is asking remote server on port 80, not ftp > port. > Give /usr/ports/www/squid a try, it can proxy HTTP and FTP. http://www.squid-cache.org/ Hope this helps, but if I where doing it I would use NAT and block any incoming from the outside. That way you can use other net apps too. -Casey Z -- This E-mail message was created with Open Source Software. Using: FreeBSD, http://www.freebsd.org KDE's KMail, http://www.kde.org Vist these sites and support O.S.S. To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-hackers" in the body of the message