From owner-freebsd-pf@FreeBSD.ORG  Wed Oct 20 07:14:07 2004
Return-Path: <owner-freebsd-pf@FreeBSD.ORG>
Delivered-To: freebsd-pf@freebsd.org
Received: from mx1.FreeBSD.org (mx1.freebsd.org [216.136.204.125])
	by hub.freebsd.org (Postfix) with ESMTP id 3295A16A4CF
	for <freebsd-pf@freebsd.org>; Wed, 20 Oct 2004 07:14:07 +0000 (GMT)
Received: from mproxy.gmail.com (rproxy.gmail.com [64.233.170.196])
	by mx1.FreeBSD.org (Postfix) with ESMTP id C39A643D55
	for <freebsd-pf@freebsd.org>; Wed, 20 Oct 2004 07:14:06 +0000 (GMT)
	(envelope-from dr.clau@gmail.com)
Received: by mproxy.gmail.com with SMTP id 79so390529rnk
        for <freebsd-pf@freebsd.org>; Wed, 20 Oct 2004 00:14:06 -0700 (PDT)
DomainKey-Signature: a=rsa-sha1; c=nofws;        s=beta; d=gmail.com;
	h=received:message-id:date:from:reply-to:to:subject:mime-version:content-type:content-transfer-encoding;
	b=q8hyXQ0VjxSnJ2ktfrLt1rEtQfDpUy/Rl7YErIh0Z4XRaxv8nJMAn2437nil8BvfRqQ3z6puP6efke7OryJrQ/rbDAjYN6jfRYjkFfU0LcdNNLCEWDOXC4bDWFsvSZcmbm/rbd48l5eZdKSJ8D16+A6omM+CsZZx1IMfcL/lSRs
Received: by 10.38.78.23 with SMTP id a23mr2701333rnb;
        Wed, 20 Oct 2004 00:14:06 -0700 (PDT)
Received: by 10.38.14.53 with HTTP; Wed, 20 Oct 2004 00:14:06 -0700 (PDT)
Message-ID: <c2d45d6e0410200014152dd8f7@mail.gmail.com>
Date: Wed, 20 Oct 2004 09:14:06 +0200
From: Claudiu Dragalina-Paraipan <dr.clau@gmail.com>
To: freebsd-pf@freebsd.org
Mime-Version: 1.0
Content-Type: text/plain; charset=US-ASCII
Content-Transfer-Encoding: 7bit
Subject: FTP Server behind NAT
X-BeenThere: freebsd-pf@freebsd.org
X-Mailman-Version: 2.1.1
Precedence: list
Reply-To: Claudiu Dragalina-Paraipan <dr.clau@gmail.com>
List-Id: Technical discussion and general questions about packet filter (pf)
	<freebsd-pf.freebsd.org>
List-Unsubscribe: <http://lists.freebsd.org/mailman/listinfo/freebsd-pf>,
	<mailto:freebsd-pf-request@freebsd.org?subject=unsubscribe>
List-Archive: <http://lists.freebsd.org/pipermail/freebsd-pf>
List-Post: <mailto:freebsd-pf@freebsd.org>
List-Help: <mailto:freebsd-pf-request@freebsd.org?subject=help>
List-Subscribe: <http://lists.freebsd.org/mailman/listinfo/freebsd-pf>,
	<mailto:freebsd-pf-request@freebsd.org?subject=subscribe>
X-List-Received-Date: Wed, 20 Oct 2004 07:14:07 -0000

Hello,

I am using a FTP Server behind NAT. I have problems connecting to it
from a computer which is itself behind NAT.
I do know how to fix this problem at client side, by using ftp-proxy,
but this is not a possible scenario.
I am looking for a way to solve this at FTP Server side (the NATing machine).
The OpenBSD PF FAQ doesn't help too much in this direction.

I encounter this situation:
- when I use active mode it tells me that it won't connect to
192.168.99.201, which is my ftp client machine, behind NAT.
- when I use passive move, the ftp client tells me it cannot connect
to 192.168.20.1, which is the internal network IP address of the FTP
server.

Of course, this happens after I succesfully log into the FTP server.

Hopefully someone has solved this situation.
Thank you in advance.


Best regards,

-- 
Claudiu Dragalina-Paraipan
e-mail: dr.clau@gmail.com