From owner-freebsd-questions@FreeBSD.ORG Mon Aug 14 21:19:05 2006 Return-Path: X-Original-To: freebsd-questions@freebsd.org Delivered-To: freebsd-questions@freebsd.org Received: from mx1.FreeBSD.org (mx1.freebsd.org [216.136.204.125]) by hub.freebsd.org (Postfix) with ESMTP id 385C316A4E7 for ; Mon, 14 Aug 2006 21:19:05 +0000 (UTC) (envelope-from joao.barros@gmail.com) Received: from py-out-1112.google.com (py-out-1112.google.com [64.233.166.179]) by mx1.FreeBSD.org (Postfix) with ESMTP id 7299943D7E for ; Mon, 14 Aug 2006 21:18:50 +0000 (GMT) (envelope-from joao.barros@gmail.com) Received: by py-out-1112.google.com with SMTP id c59so1415237pyc for ; Mon, 14 Aug 2006 14:18:49 -0700 (PDT) DomainKey-Signature: a=rsa-sha1; q=dns; c=nofws; s=beta; d=gmail.com; h=received:message-id:date:from:to:subject:cc:in-reply-to:mime-version:content-type:content-transfer-encoding:content-disposition:references; b=UefH4Z8wLS02DdJQAaviNU4HbgbI/W0LQdOZ23livWSWuppqGUEl9agpf7kALX8AXAlxbsYpdn6ObYZg/EgKBZWreqTysxIQuiKsKrKIv1XSZy1zowRa7TxYOxkxO2SLxQMHbjGLT/xRqpmQN6DlsM0qzGQX2Qkn1JGvoVhvNAU= Received: by 10.35.51.19 with SMTP id d19mr14093568pyk; Mon, 14 Aug 2006 14:18:49 -0700 (PDT) Received: by 10.35.114.2 with HTTP; Mon, 14 Aug 2006 14:18:49 -0700 (PDT) Message-ID: <70e8236f0608141418u13a0c736l2de85012613dd115@mail.gmail.com> Date: Mon, 14 Aug 2006 22:18:49 +0100 From: "Joao Barros" To: "Ivan Levchenko" In-Reply-To: MIME-Version: 1.0 Content-Type: text/plain; charset=ISO-8859-1; format=flowed Content-Transfer-Encoding: 7bit Content-Disposition: inline References: <6e6841490608141219u5ef60960n8731717da00b5785@mail.gmail.com> Cc: Gilberto Villani Brito , freebsd-questions@freebsd.org Subject: Re: ftp-proxy with pf X-BeenThere: freebsd-questions@freebsd.org X-Mailman-Version: 2.1.5 Precedence: list List-Id: User questions List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Mon, 14 Aug 2006 21:19:05 -0000 On 8/14/06, Ivan Levchenko wrote: > Hello Gilberto, > > No, that wouldn't work, there is no sense in adding a nat rule to the > internal interface. > > I just found out why it didn't work. All this time, I was using active > ftp on my ubuntu box. when i switched to passive, it all worked like a > charm. found it on some forum archive .. forgot the link. on linux the > env setting for passive ftp doesn't work.. .i never knew that.. you > have you add -p to the ftp command or start it using pftp.. > > On 8/14/06, Gilberto Villani Brito wrote: > > Try using this rule: > > nat on $int_if from any to any port 21 -> 127.0.0.1 port 8021 > > > > > > Gilberto > > > > > > 2006/8/13, Ivan Levchenko < levchenko.i@gmail.com>: > > > > > Hi everybody, > > > > having some troubles with ftp-proxy on my gateway at home: the darn > > thing gets me connected to an outside ftp server, but won't let me do > > anything else with it. > > > > the gateway computer is freebsd (it is running pf with nat to share > > and secure a pppoe connection); the client computer is running kubuntu > > 6.06. > > > > any help (the right keyword to google with will be nice too!!!) will be > > great! I'm happilly using pftpx with no problems :-) http://www.freshports.org/ftp/pftpx/ -- Joao Barros