From owner-freebsd-questions Mon Feb 3 8:52:56 2003 Delivered-To: freebsd-questions@freebsd.org Received: from mx1.FreeBSD.org (mx1.freebsd.org [216.136.204.125]) by hub.freebsd.org (Postfix) with ESMTP id 6F70B37B401 for ; Mon, 3 Feb 2003 08:52:54 -0800 (PST) Received: from darkpossum.medill.northwestern.edu (darkpossum.medill.northwestern.edu [129.105.51.23]) by mx1.FreeBSD.org (Postfix) with ESMTP id 41EE743F3F for ; Mon, 3 Feb 2003 08:52:53 -0800 (PST) (envelope-from possum@darkpossum.medill.northwestern.edu) Received: from darkpossum.medill.northwestern.edu (48f08748c24ab2ba7cf6fb9ac0643c3f@localhost.medill.northwestern.edu [127.0.0.1]) by darkpossum.medill.northwestern.edu (8.12.6/8.12.6) with ESMTP id h13GhdZr001560 for ; Mon, 3 Feb 2003 10:43:39 -0600 (CST) (envelope-from possum@darkpossum.medill.northwestern.edu) Received: (from possum@localhost) by darkpossum.medill.northwestern.edu (8.12.6/8.12.6/Submit) id h13Ghdwx001559 for freebsd-questions@freebsd.org; Mon, 3 Feb 2003 10:43:39 -0600 (CST) Date: Mon, 3 Feb 2003 10:43:39 -0600 From: Redmond Militante To: freebsd-questions@freebsd.org Subject: ipf/ipnat and passive ftp Message-ID: <20030203164339.GA1541@darkpossum> Reply-To: Redmond Militante Mime-Version: 1.0 Content-Type: multipart/signed; micalg=pgp-sha1; protocol="application/pgp-signature"; boundary="k1lZvvs/B4yU6o8G" Content-Disposition: inline User-Agent: Mutt/1.4i X-Sender: redmond@darkpossum.medill.northwestern.edu X-URL: http://darkpossum.medill.northwestern.edu/modules.php?name=Content&pa=showpage&pid=1 X-DSS-PGP-Fingerprint: F9E7 AFEA 0209 B164 7F83 E727 5213 FAFA 1511 7836 X-Tofu: The other white meat substitute. Sender: owner-freebsd-questions@FreeBSD.ORG Precedence: bulk List-ID: List-Archive: (Web Archive) List-Help: (List Instructions) List-Subscribe: List-Unsubscribe: X-Loop: FreeBSD.ORG --k1lZvvs/B4yU6o8G Content-Type: text/plain; charset=us-ascii Content-Disposition: inline Content-Transfer-Encoding: quoted-printable hi all i have an ftp server behind an ipf/ipnat gateway box. active ftp works fine. i'm trying to get passive ftp working, at the momen= t it is *slow*, eventually connects in most cases, but will not display dir= ectory contents unless you switch the ftp client to 'active'ly connect... relevant portions of my config files /etc/ipf.rules pass in quick on xl0 proto tcp from any to 192.168.1.50/8 port =3D 21 flag= s S kee p state keep frags pass in quick on xl0 proto tcp from any to any port > 1023 flags S keep st= ate rdr xl0 0.0.0.0/0 port 21 -> 192.168.1.50 port 21 tcp rdr xl0 0.0.0.0/0 port > 1023 -> 192.168.1.50 port > 1023 tcp any advice you could give would be highly appreciated. =20 thanks redmond --k1lZvvs/B4yU6o8G Content-Type: application/pgp-signature Content-Disposition: inline -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.2.1 (FreeBSD) iD8DBQE+Ppw7FNjun16SvHYRAqWuAJ4nvHzwKPd7fhkKGvfIEzI9ixwNdACffz9L Cn/Wc+Vx8R1ZyhUhURKcAZQ= =LjxK -----END PGP SIGNATURE----- --k1lZvvs/B4yU6o8G-- To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-questions" in the body of the message