Date: Thu, 7 Jul 2005 14:37:25 -0400 From: Scott Ullrich <sullrich@gmail.com> To: Michael Weiser <michael@weiser.dinsnail.net> Cc: freebsd-pf@freebsd.org Subject: Re: ftp connections not working from firewall box Message-ID: <d5992baf050707113723ee2327@mail.gmail.com> In-Reply-To: <20050707182023.GB57981@weiser.dinsnail.net> References: <20050707182023.GB57981@weiser.dinsnail.net>
next in thread | previous in thread | raw e-mail | index | archive | help
On 7/7/05, Michael Weiser <michael@weiser.dinsnail.net> wrote: > Hi again, >=20 > another problem with my new pftpx setup is that because of >=20 > rdr on xl0 inet proto tcp from any to any port =3D ftp -> 127.0.0.1 port = 8021 >=20 > only connections coming in via the internal interface get redirected to > pftpx. Due to that FTP connections originating on the machine itself > don't work because they leave directly via the external interface so that > pftpx doesn't see them to add the proper firewall rules. >=20 > Is there a workaround or proper solution for this (possibly including a > rant about my braindamage ;) ? If you default to deny on the WAN what happens if you change the rdr statement to: rdr inet proto tcp from any to any port =3D ftp -> 127.0.0.1 port 8021 Scott
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?d5992baf050707113723ee2327>