From owner-freebsd-questions Sun Dec 30 11:48:44 2001 Delivered-To: freebsd-questions@freebsd.org Received: from smtp3.mx.pitdc1.stargate.net (smtp3.mx.pitdc1.stargate.net [206.210.69.143]) by hub.freebsd.org (Postfix) with SMTP id A4F9637B417 for ; Sun, 30 Dec 2001 11:48:36 -0800 (PST) Received: (qmail 28884 invoked from network); 30 Dec 2001 19:31:52 -0000 Received: from dap-209-166-133-178.nfas.greensburg-tnt-2.sns234.pa.stargate.net (HELO wastegate.net) (209.166.133.178) by smtp3.mx.pitdc1.stargate.net with SMTP; 30 Dec 2001 19:31:52 -0000 Received: from mother.wastegate.net (mother.wg.local [192.168.1.2]) by wastegate.net (Postfix) with SMTP id BCB2348379; Sun, 30 Dec 2001 14:31:55 -0500 (EST) From: "Doug Reynolds" To: "freebsd-questions@freebsd.org" , "J.S." Date: Sun, 30 Dec 2001 14:33:23 -0500 Reply-To: "Doug Reynolds" X-Mailer: PMMail 2000 Professional (2.20.2380) For Windows 98 (4.10.2222) In-Reply-To: <20011230123041.6307bae9.johann@broadpark.no> MIME-Version: 1.0 Content-Type: text/plain; charset="us-ascii" Content-Transfer-Encoding: 7bit Subject: Re: HELP! Cisco 677i-DIR ADSL-router/modem causing annoyance! Message-Id: <20011230193155.BCB2348379@wastegate.net> Sender: owner-freebsd-questions@FreeBSD.ORG Precedence: bulk List-ID: List-Archive: (Web Archive) List-Help: (List Instructions) List-Subscribe: List-Unsubscribe: X-Loop: FreeBSD.ORG On Sun, 30 Dec 2001 12:30:41 +0100, J.S. wrote: >Hello again, > >This must be the 3rd time I post this message. And I'm going to keep doing >so untill somebody helps me =) > >Anyone here with an Cisco 677i-DIR ADSL-router running NAT between you and >you ISP? Which happens to requires a port redirection entry through telnet >each time you want to open a new port? > >I'm on an ADSL connection with one static IP. I'm not running NAT, the >Cisco is. And I find it hard sometimes getting my will when a black ugly >box is blocking my entrance. > >All ordinary daemons; SSHD, FTPD, BIND, Apache etc. works great. This is >the commands that I've so far added to the router: > >ftpd/sshd: set nat entry add 10.0.0.2 20-22 0.0.0.0 20-22 tcp >www: set nat entry add 10.0.0.2 80 0.0.0.0 80 tcp >bind: set nat entry add 10.0.0.2 53 0.0.0.0 53 tcp >identd: set nat entry add 10.0.0.2 113 0.0.0.0 113 tcp > >I'm a bit uncertain, however, when it comes to opening a port or range of ports >to get passive FTP mode working on my virtual ProFTPD server (port 2001), as well >as DCC in Irssi. I've heard those services go through the IANA-registered >ephemeral port-range (49152-65535); > >sysctl net.inet.ip.portrange.hifirst > /net.inet.ip.portrange.hilast > >So I went ahead opening those ports as well. Just about to close them >though. Passive and DCC is not working. Incoming DCC file transfers are, >according to Irssi, coming from ports way lower -- i.e. 4384. That can't >be right? the default ftpd with freebsd uses 1024-4999. I think those are the default ports for most ftp servers. you probably have to re-compile proftpd to use the hi ports. try opening 1024-4999.. --- doug reynolds | the maverick | mav@wastegate.net PGP Public Key Fingerprint: 6E7B 9993 B503 6D45 E33A 2019 26E5 C1DB To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-questions" in the body of the message