Skip site navigation (1)Skip section navigation (2) 
Date:      Fri, 27 Jul 2001 17:49:45 -0400
From:      "Tony" <tony@tntpro.com>
To:        "'freebsd-questions@freebsd.org'" <freebsd-questions@FreeBSD.ORG>
Subject:   FTP problems thru inetd any ideas on how to fix?
Message-ID:  <006f01c116e6$1944e840$0a00a8c0@TONY>
next in thread | raw e-mail | index | archive | help 
This is a multi-part message in MIME format.

------=_NextPart_000_006C_01C116C4.858A29B0
Content-Type: text/plain;
	charset="iso-8859-1"
Content-Transfer-Encoding: quoted-printable

    when I FTP to my server from my internal network (192.168.0.x) =
everything works fine...

ftp> put ibm_linux-02.avi
local: ibm_linux-02.avi remote: ibm_linux-02.avi
150 Opening BINARY mode data connection for "ibm_linux-02.avi".
100% =
|************************************************************************=
******************************|   212 KB    00:00 ETA
226 Transfer complete.
217088 bytes sent in 0.44 seconds (481.30 KB/s)
ftp> exit
221 Goodbye.

    but when I try from outside my firewall I get this:

ftp> put ibm_linux-02.avi
local: ibm_linux-02.avi remote: ibm_linux-02.avi
ftp: connect: Connection refused
ftp> exit
221 Goodbye.

    copy of natd.conf:

root:/etc# more natd.conf=20
interface ed0
use_sockets yes
same_ports yes
dynamic yes
redirect_port tcp 192.168.0.100:http    http
redirect_port tcp 192.168.0.100:https   https
redirect_port tcp 192.168.0.100:22      24
redirect_port tcp 192.168.0.100:smtp    smtp
redirect_port tcp 192.168.0.100:pop3    pop3
redirect_port tcp 192.168.0.100:20      20
redirect_port udp 192.168.0.100:20      20
redirect_port tcp 192.168.0.100:ftp     ftp
redirect_port udp 192.168.0.100:ftp     ftp
redirect_port tcp 192.168.0.100:8010    8010
redirect_port tcp 192.168.0.100:8011    8011
redirect_port tcp 192.168.0.10:4709    4709
root:/etc#=20

    output of ipfw list

root:/etc# ipfw list
00050 divert 8668 ip from any to any via ed0
00100 allow ip from any to any via lo0
00200 deny ip from any to 127.0.0.0/8
00300 deny ip from 127.0.0.0/8 to any
00400 pipe 1 ip from 192.168.0.100 to any
65000 allow ip from any to any
65535 deny ip from any to any

if anyone is interested the pipe is for dummynet throttling and having =
that in there doesn't effect FTP connect



Legal Notice: Receipt of this message constitutes your unconditional =
acceptance of agreement with all terms, conditions, conclusions and =
opinions, either expressed or implied, as interpreted by the author =
without further clarification. Use of any information contained herein =
[inclusive of any and all attachments] or omitted in part or in whole =
from the actual message is strictly prohibited and will be subject to =
collection of significant financial damages.


------=_NextPart_000_006C_01C116C4.858A29B0
Content-Type: text/html;
	charset="iso-8859-1"
Content-Transfer-Encoding: quoted-printable

<!DOCTYPE HTML PUBLIC "-//W3C//DTD HTML 4.0 Transitional//EN">
<HTML><HEAD>
<META http-equiv=3DContent-Type content=3D"text/html; =
charset=3Diso-8859-1">
<META content=3D"MSHTML 5.50.4616.200" name=3DGENERATOR>
<STYLE></STYLE>
</HEAD>
<BODY bgColor=3D#ffffff>
<DIV><FONT face=3DArial size=3D2>&nbsp;&nbsp;&nbsp; when I FTP to my =
server from my=20
internal network (192.168.0.x) everything works fine...</FONT></DIV>
<DIV><FONT face=3DArial size=3D2></FONT>&nbsp;</DIV>
<DIV><FONT face=3DArial size=3D2>ftp&gt;&nbsp;put =
ibm_linux-02.avi<BR>local:=20
ibm_linux-02.avi remote: ibm_linux-02.avi<BR>150 Opening BINARY mode =
data=20
connection for "ibm_linux-02.avi".<BR>100%=20
|************************************************************************=
******************************|&nbsp;&nbsp;=20
212 KB&nbsp;&nbsp;&nbsp; 00:00 ETA<BR>226 Transfer complete.<BR>217088 =
bytes=20
sent in 0.44 seconds (481.30 KB/s)<BR>ftp&gt; exit<BR>221 =
Goodbye.</FONT></DIV>
<DIV><FONT face=3DArial size=3D2></FONT>&nbsp;</DIV>
<DIV><FONT face=3DArial size=3D2>&nbsp;&nbsp;&nbsp; but when I try from =
outside my=20
firewall I get this:</FONT></DIV>
<DIV><FONT face=3DArial size=3D2></FONT>&nbsp;</DIV>
<DIV><FONT face=3DArial size=3D2>ftp&gt;&nbsp;put =
ibm_linux-02.avi<BR>local:=20
ibm_linux-02.avi remote: ibm_linux-02.avi<BR>ftp: connect: Connection=20
refused<BR>ftp&gt; exit<BR>221 Goodbye.</FONT></DIV>
<DIV><FONT face=3DArial size=3D2></FONT>&nbsp;</DIV>
<DIV><FONT face=3DArial size=3D2>&nbsp;&nbsp;&nbsp; copy of =
natd.conf:</FONT></DIV>
<DIV><FONT face=3DArial size=3D2></FONT>&nbsp;</DIV>
<DIV><FONT face=3DArial size=3D2>root:/etc# more natd.conf <BR>interface =

ed0<BR>use_sockets yes<BR>same_ports yes<BR>dynamic yes<BR>redirect_port =
tcp=20
192.168.0.100:http&nbsp;&nbsp;&nbsp; http<BR>redirect_port tcp=20
192.168.0.100:https&nbsp;&nbsp; https<BR>redirect_port tcp=20
192.168.0.100:22&nbsp;&nbsp;&nbsp;&nbsp;&nbsp; 24<BR>redirect_port tcp=20
192.168.0.100:smtp&nbsp;&nbsp;&nbsp; smtp<BR>redirect_port tcp=20
192.168.0.100:pop3&nbsp;&nbsp;&nbsp; pop3<BR>redirect_port tcp=20
192.168.0.100:20&nbsp;&nbsp;&nbsp;&nbsp;&nbsp; 20<BR>redirect_port udp=20
192.168.0.100:20&nbsp;&nbsp;&nbsp;&nbsp;&nbsp; 20<BR>redirect_port tcp=20
192.168.0.100:ftp&nbsp;&nbsp;&nbsp;&nbsp; ftp<BR>redirect_port udp=20
192.168.0.100:ftp&nbsp;&nbsp;&nbsp;&nbsp; ftp<BR>redirect_port tcp=20
192.168.0.100:8010&nbsp;&nbsp;&nbsp; 8010<BR>redirect_port tcp=20
192.168.0.100:8011&nbsp;&nbsp;&nbsp; 8011<BR>redirect_port tcp=20
192.168.0.10:4709&nbsp;&nbsp;&nbsp; 4709<BR>root:/etc# </FONT></DIV>
<DIV><FONT face=3DArial size=3D2></FONT>&nbsp;</DIV>
<DIV><FONT face=3DArial size=3D2>&nbsp;&nbsp;&nbsp; output of ipfw =
list</FONT></DIV>
<DIV><FONT face=3DArial size=3D2></FONT>&nbsp;</DIV>
<DIV><FONT face=3DArial size=3D2>root:/etc# ipfw list<BR>00050 divert =
8668 ip from=20
any to any via ed0<BR>00100 allow ip from any to any via lo0<BR>00200 =
deny ip=20
from any to 127.0.0.0/8<BR>00300 deny ip from 127.0.0.0/8 to =
any<BR>00400 pipe 1=20
ip from 192.168.0.100 to any<BR>65000 allow ip from any to any<BR>65535 =
deny ip=20
from any to any</FONT></DIV>
<DIV><FONT face=3DArial size=3D2></FONT>&nbsp;</DIV>
<DIV><FONT face=3DArial size=3D2>if anyone is interested the pipe is for =
dummynet=20
throttling and having that in there doesn't effect FTP =
connect</FONT></DIV>
<DIV><FONT face=3DArial size=3D2></FONT>&nbsp;</DIV>
<DIV><FONT face=3DArial size=3D2></FONT>&nbsp;</DIV>
<DIV><FONT face=3DArial size=3D2></FONT>&nbsp;</DIV>
<DIV><FONT face=3DArial size=3D2>Legal Notice: Receipt of this message =
constitutes=20
your unconditional acceptance of agreement with all terms, conditions,=20
conclusions and opinions, either expressed or implied, as interpreted by =
the=20
author without further clarification. Use of any information contained =
herein=20
[inclusive of any and all attachments] or omitted in part or in whole =
from the=20
actual message is strictly prohibited and will be subject to collection =
of=20
significant financial damages.<BR></FONT></DIV></BODY></HTML>

------=_NextPart_000_006C_01C116C4.858A29B0--


To Unsubscribe: send mail to majordomo@FreeBSD.org
with "unsubscribe freebsd-questions" in the body of the message

Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?006f01c116e6$1944e840$0a00a8c0>