From owner-freebsd-questions Thu Aug 16 18:37: 6 2001 Delivered-To: freebsd-questions@freebsd.org Received: from mailin7.bigpond.com (juicer38.bigpond.com [139.134.6.95]) by hub.freebsd.org (Postfix) with ESMTP id 4F75D37B40A for ; Thu, 16 Aug 2001 18:36:54 -0700 (PDT) (envelope-from rmoss@bigpond.net.au) Received: from spiral.bigpond.net.au ([139.134.4.56]) by mailin7.bigpond.com (Netscape Messaging Server 4.15) with SMTP id GI6VFJ00.1DW; Fri, 17 Aug 2001 11:42:55 +1000 Received: from CPE-144-132-3-53.vic.bigpond.net.au ([144.132.3.53]) by mail3.bigpond.com(MailRouter V2.9g 5/2336026); 17 Aug 2001 11:37:15 Message-Id: <5.0.2.1.0.20010817112719.00ae6ff8@localhost> X-Sender: rmoss/pop-server.vic.bigpond.net.au@localhost X-Mailer: QUALCOMM Windows Eudora Version 5.0.2 Date: Fri, 17 Aug 2001 11:30:02 +1000 To: "David W. Chapman Jr." From: Robert Moss Subject: Re: ipnat, bimap, active ftp Cc: freebsd-questions@freebsd.org In-Reply-To: <20010815222707.B4346@leviathan.inethouston.net> Mime-Version: 1.0 Content-Type: text/plain; charset="us-ascii"; format=flowed Sender: owner-freebsd-questions@FreeBSD.ORG Precedence: bulk List-ID: List-Archive: (Web Archive) List-Help: (List Instructions) List-Subscribe: List-Unsubscribe: X-Loop: FreeBSD.ORG Yeah, you want to have an FTP PROXY entry before that i think. It works in normal MAP statements, not sure about BIMAP. map xl0 192.168.5.254/32 -> 66.64.37.75/32 proxy port ftp ftp/tcp bimap xl0 192.168.5.254/32 -> 66.64.37.75/32 Either that, or use FTP PASSIVE mode my IPNAT rules are like so map rl1 192.168.0.0/16 -> 0.0.0.0/32 proxy port ftp ftp/tcp map rl1 192.168.0.0/16 -> 0.0.0.0/32 portmap tcp/udp 2000:65500 map rl1 192.168.0.0/16 -> 0.0.0.0/32 Cheers Robert Moss. At 10:27 PM 15/08/2001 -0500, you wrote: >I'm having a problem with some bimaps in ipnat and active ftp. I >don't think its an ipnat problem, but here's the info > >in my ipnat.rules here's the bimap > >bimap xl0 192.168.5.254/32 -> 66.64.37.75/32 > >I believe the problem starts when the client sends this port command >to the server > >PORT 192,168,5,254,5,126 > >its sending the ip of its private address(as it doesn't know it has a >static host mapping). Is there anyway to make ipnat translate this? >the only current way for me to get around this is to give the >computers that need active ftp a public static address. I'm not on >this list so I'd appreciate a cc if anyone can respond. > >Thanks. > >-- >David W. Chapman Jr. >dwcjr@inethouston.net Raintree Network Services, Inc. >dwcjr@freebsd.org FreeBSD Committer > >To Unsubscribe: send mail to majordomo@FreeBSD.org >with "unsubscribe freebsd-questions" in the body of the message To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-questions" in the body of the message