Skip site navigation (1)Skip section navigation (2) 
Date:      Fri, 17 Aug 2001 11:30:02 +1000
From:      Robert Moss <rmoss@bigpond.net.au>
To:        "David W. Chapman Jr." <dwcjr@inethouston.net>
Cc:        freebsd-questions@freebsd.org
Subject:   Re: ipnat, bimap, active ftp
Message-ID:  <5.0.2.1.0.20010817112719.00ae6ff8@localhost>
In-Reply-To: <20010815222707.B4346@leviathan.inethouston.net>
next in thread | previous in thread | raw e-mail | index | archive | help 
Yeah, you want to have an FTP PROXY entry before that i think.  It works in 
normal MAP statements, not sure about BIMAP.


map xl0 192.168.5.254/32 -> 66.64.37.75/32 proxy port ftp ftp/tcp
bimap xl0 192.168.5.254/32  -> 66.64.37.75/32


Either that, or use FTP PASSIVE mode

my IPNAT rules are like so

map rl1 192.168.0.0/16 -> 0.0.0.0/32 proxy port ftp ftp/tcp
map rl1 192.168.0.0/16 -> 0.0.0.0/32 portmap tcp/udp 2000:65500
map rl1 192.168.0.0/16 -> 0.0.0.0/32


Cheers
Robert Moss.

At 10:27 PM 15/08/2001 -0500, you wrote:
>I'm having a problem with some bimaps in ipnat and active ftp.  I
>don't think its an ipnat problem, but here's the info
>
>in my ipnat.rules here's the bimap
>
>bimap xl0 192.168.5.254/32  -> 66.64.37.75/32
>
>I believe the problem starts when the client sends this port command
>to the server
>
>PORT 192,168,5,254,5,126
>
>its sending the ip of its private address(as it doesn't know it has a
>static host mapping).  Is there anyway to make ipnat translate this?
>the only current way for me to get around this is to give the
>computers that need active ftp a public static address.  I'm not on
>this list so I'd appreciate a cc if anyone can respond.
>
>Thanks.
>
>--
>David W. Chapman Jr.
>dwcjr@inethouston.net   Raintree Network Services, Inc. <www.inethouston.net>
>dwcjr@freebsd.org       FreeBSD Committer <www.FreeBSD.org>
>
>To Unsubscribe: send mail to majordomo@FreeBSD.org
>with "unsubscribe freebsd-questions" in the body of the message



To Unsubscribe: send mail to majordomo@FreeBSD.org
with "unsubscribe freebsd-questions" in the body of the message

Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?5.0.2.1.0.20010817112719.00ae6ff8>