Date: Fri, 12 May 2006 09:24:30 -0300 From: Gilberto Villani Brito <linux@giboia.org> To: freebsd-pf@freebsd.org Subject: PF - ftp passive mode. Message-ID: <20060512092430.0e3298ea@giboia>
next in thread | raw e-mail | index | archive | help
Hello, I have a ftp server in a DMZ and this is not accepting passive conections. I tryed ipfw + natd and it works. I am using this rules: # rdr on em0 proto tcp from any to 200.250.23.1 port 21 -> 192.168.0.2 port 21 # rdr on em0 proto tcp from any to 200.250.23.1 port 49152:65535 -> 192.168.0.2 port 49152:65535 # pass in on em1 from 192.168.0.0/24 to any keep state # pass out on em1 from any to 192.168.0.0/24 keep state http://www.openbsd.org/faq/pf/ftp.html#natserver What is the problem??? Don't PF make nat for passive ftp?? Gilberto
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?20060512092430.0e3298ea>