From owner-freebsd-questions@FreeBSD.ORG  Fri Oct 10 10:33:57 2003
Return-Path: <owner-freebsd-questions@FreeBSD.ORG>
Delivered-To: freebsd-questions@freebsd.org
Received: from mx1.FreeBSD.org (mx1.freebsd.org [216.136.204.125])
	by hub.freebsd.org (Postfix) with ESMTP id 1D7D016A4BF
	for <questions@freebsd.org>; Fri, 10 Oct 2003 10:33:57 -0700 (PDT)
Received: from mailhub.sweetdreamsracing.biz (mailhub.sweetdreamsracing.biz
	[66.92.171.106])
	by mx1.FreeBSD.org (Postfix) with ESMTP id 3F36A43FA3
	for <questions@freebsd.org>; Fri, 10 Oct 2003 10:33:56 -0700 (PDT)
	(envelope-from culverk@sweetdreamsracing.biz)
Received: by mailhub.sweetdreamsracing.biz (Postfix, from userid 80)
	id A950E1FA; Fri, 10 Oct 2003 13:37:18 -0400 (EDT)
Received: from 141.156.69.109 ([141.156.69.109]) by
	www.sweetdreamsracing.biz (Horde) with HTTP for
	<culverk@www.sweetdreamsracing.biz>; Fri, 10 Oct 2003 13:37:18 -0400
Message-ID: <1065807438.3ivbl0i9q22o@www.sweetdreamsracing.biz>
Date: Fri, 10 Oct 2003 13:37:18 -0400
From: Kenneth Culver <culverk@sweetdreamsracing.biz>
To: Khalil Khozeimeh <Khalilk@skaengineers.com>
References: <01B0E4FF1A1941498FDE920F50FA77EE0440CC@skaserver.skaengineers.com>
In-Reply-To: <01B0E4FF1A1941498FDE920F50FA77EE0440CC@skaserver.skaengineers.com>
MIME-Version: 1.0
Content-Type: text/plain; charset="ISO-8859-1"
Content-Disposition: inline
Content-Transfer-Encoding: 7bit
User-Agent: Internet Messaging Program (IMP) 4.0-cvs
cc: "'questions@FreeBSD.org'" <questions@freebsd.org>
Subject: Re: FTP Client from Behind Filtering Bridge/Firewall
X-BeenThere: freebsd-questions@freebsd.org
X-Mailman-Version: 2.1.1
Precedence: list
List-Id: User questions <freebsd-questions.freebsd.org>
List-Unsubscribe: <http://lists.freebsd.org/mailman/listinfo/freebsd-questions>,
	<mailto:freebsd-questions-request@freebsd.org?subject=unsubscribe>
List-Archive: <http://lists.freebsd.org/pipermail/freebsd-questions>
List-Post: <mailto:freebsd-questions@freebsd.org>
List-Help: <mailto:freebsd-questions-request@freebsd.org?subject=help>
List-Subscribe: <http://lists.freebsd.org/mailman/listinfo/freebsd-questions>,
	<mailto:freebsd-questions-request@freebsd.org?subject=subscribe>
X-List-Received-Date: Fri, 10 Oct 2003 17:33:57 -0000

Quoting Khalil Khozeimeh <Khalilk@skaengineers.com>:

> I have configured a FreeBSD 4.8 system as a filtering bridge/firewall using
> the IPFW. I am interested in enabling FTP clients from inside the firewall
> to access FTP servers on the outside. It will be appreciated if somebody can
> point me in the proper direction to configure IPFW (procedure and/or the
> applicable rules) properly to achieve my goal. I do not anticipate to run a
> FTP server inside the firewall.
>
I don't know if ipfw has this feature, but with ipfilter (included in FreeBSD)
and ipnat, you can run an ftp proxy in addition to nat and filter, and that
does exactly what you want.

Ken