From owner-freebsd-pf@FreeBSD.ORG Tue Jan 24 11:09:20 2006 Return-Path: X-Original-To: freebsd-pf@freebsd.org Delivered-To: freebsd-pf@freebsd.org Received: from mx1.FreeBSD.org (mx1.freebsd.org [216.136.204.125]) by hub.freebsd.org (Postfix) with ESMTP id 8D1C616A41F for ; Tue, 24 Jan 2006 11:09:20 +0000 (GMT) (envelope-from wash@wananchi.com) Received: from ns2.wananchi.com (mail.wananchi.com [62.8.64.4]) by mx1.FreeBSD.org (Postfix) with ESMTP id A284643D48 for ; Tue, 24 Jan 2006 11:09:15 +0000 (GMT) (envelope-from wash@wananchi.com) Received: from wash by ns2.wananchi.com with local (Exim 4.60 #0 (FreeBSD 4.11-STABLE)) id 1F1M2l-000G5G-SM by authid for ; Tue, 24 Jan 2006 14:08:59 +0300 Date: Tue, 24 Jan 2006 14:08:59 +0300 From: Odhiambo Washington To: freebsd-pf@freebsd.org Message-ID: <20060124110859.GA58817@ns2.wananchi.com> Mail-Followup-To: Odhiambo Washington , freebsd-pf@freebsd.org References: <20060124115544.q3zmunj9m0og4g0g@mail.infrax.si> Mime-Version: 1.0 Content-Type: text/plain; charset=us-ascii Content-Disposition: inline In-Reply-To: <20060124115544.q3zmunj9m0og4g0g@mail.infrax.si> X-Disclaimer: Any views expressed in this message, where not explicitly attributed otherwise, are mine alone!. X-Mailer: Mutt 1.5.11 (2005-09-15) X-Designation: Systems Administrator, Wananchi Online Ltd. X-Location: Nairobi, KE, East Africa. User-Agent: Mutt/1.5.11 Subject: Re: Updating pf on FreeBSD X-BeenThere: freebsd-pf@freebsd.org X-Mailman-Version: 2.1.5 Precedence: list List-Id: "Technical discussion and general questions about packet filter \(pf\)" List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Tue, 24 Jan 2006 11:09:20 -0000 * On 24/01/06 11:55 +0100, nejko@skoberne.net wrote: > Hi, > > I am running FreeBSD 5.3 and pf, and I have a problem because there's a Windows > FTP server machine running behind NAT, on the local network. Of course, I want > it to be accessible from the outside too. I have discovered pftpx, which is a > proxy which does exactly what I want and is also ported to FreeBSD. > Unfortunately, it doesn't work for me and I have learned that that's because it > uses recursive (nested) anchors feature in the newer pf versions (from FreeBSD > 5.4 on I think). > > So, I would need to upgrade the pf on my FreeBSD 5.3 to the at least 5.4's > version. What would be the easiest and the most secure way to accomplish this? > I guess I have to update pf's kernel part source and userland programs (pfctl)? > How? Update the box to FreeBSD 6.0 using /usr/src/UPDATING as a guide. Of course you'll have to do more, like rebuilding all the installed ports if there are any. It's the surest way though. -Wash http://www.netmeister.org/news/learn2quote.html DISCLAIMER: See http://www.wananchi.com/bms/terms.php -- +======================================================================+ |\ _,,,---,,_ | Odhiambo Washington Zzz /,`.-'`' -. ;-;;,_ | Wananchi Online Ltd. www.wananchi.com |,4- ) )-,_. ,\ ( `'-'| Tel: +254 20 313985-9 +254 20 313922 '---''(_/--' `-'\_) | GSM: +254 722 743223 +254 733 744121 +======================================================================+ The debate rages on: Is PL/I Bachtrian or Dromedary?