From owner-freebsd-pf@FreeBSD.ORG Thu May 31 09:46:46 2007 Return-Path: X-Original-To: freebsd-pf@freebsd.org Delivered-To: freebsd-pf@freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [69.147.83.52]) by hub.freebsd.org (Postfix) with ESMTP id B7C3416A400 for ; Thu, 31 May 2007 09:46:46 +0000 (UTC) (envelope-from mahabubbasha@gmail.com) Received: from nz-out-0506.google.com (nz-out-0506.google.com [64.233.162.237]) by mx1.freebsd.org (Postfix) with ESMTP id 7A16E13C45B for ; Thu, 31 May 2007 09:46:46 +0000 (UTC) (envelope-from mahabubbasha@gmail.com) Received: by nz-out-0506.google.com with SMTP id 14so95047nzn for ; Thu, 31 May 2007 02:46:46 -0700 (PDT) DKIM-Signature: a=rsa-sha1; c=relaxed/relaxed; d=gmail.com; s=beta; h=domainkey-signature:received:received:message-id:date:from:to:subject:mime-version:content-type; b=Rgia57++oy23WQGf5fIbZghHMCcIl7k+mrj44bqAG2Md66n4sExzdtrSZbRgFHB4fTb7tBBl4FSb4P6rKFRwJJgC44P22aEg/LBQffBH387PRhkWC0T4zt6aOP0hGaIcmkJp4EN0RLPQz+1YM1je7i5KRDBhvnWSPKpm7auUpTw= DomainKey-Signature: a=rsa-sha1; c=nofws; d=gmail.com; s=beta; h=received:message-id:date:from:to:subject:mime-version:content-type; b=gameNjenrDKx4jETrxNmiE1IwIUt31Ux3QetUHMs52TzevbWKiMOTcmwknPD2CFuJmJ441b3XPbOyzmZZZRgc4MpGP/15q6icxgrghMiezMFFCdp5tmfv1ER+p3B4X5rFjUb53G+FXHXWSuJaq0zngHnJzj0kYrg7V35s82PmF4= Received: by 10.114.12.9 with SMTP id 9mr437367wal.1180603082456; Thu, 31 May 2007 02:18:02 -0700 (PDT) Received: by 10.114.191.12 with HTTP; Thu, 31 May 2007 02:18:02 -0700 (PDT) Message-ID: Date: Thu, 31 May 2007 14:48:02 +0530 From: "Mahabub Basha" To: freebsd-pf@freebsd.org MIME-Version: 1.0 Content-Type: text/plain; charset=ISO-8859-1; format=flowed Content-Transfer-Encoding: 7bit Content-Disposition: inline X-Content-Filtered-By: Mailman/MimeDel 2.1.5 Subject: Problem to access FTP server X-BeenThere: freebsd-pf@freebsd.org X-Mailman-Version: 2.1.5 Precedence: list List-Id: "Technical discussion and general questions about packet filter \(pf\)" List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Thu, 31 May 2007 09:46:46 -0000 Hi all, I am a newbie for freebsd. I am using freebsd 6.1. I have some problem to access ftp server through external ip behind a pf firewall. I can access my ftp server through active mode , but not working in passive mode. My ruleset file is in the following: ====================================================================== pf.conf ====================================================================== lan = "port2" wan = "port1" # User BiNAT Rules binat on $wan from 10.0.0.10 to any -> 172.16.1.10 # User RDR Rules rdr on $wan from any to 172.16.1.10 -> 10.0.0.10 # User Filter Rules pass all ========================================================================= my lan ip address is 10.0.0.10 and my wan ip is 172.16.1.10 I just put above three rules. And run my ftp server using inetd. I used core-ftp client in windows xp to connect my ftp server machine , in active mode its working fine. But in passive mode its not working. Before i asked this problem here, i read the following links and try out the same. but its not working. ===================================================================== http://www.openbsd.org/faq/pf/ftp.html http://article.gmane.org/gmane.os.freebsd.devel.pf4freebsd/2952/match=issues+ftp+windows+pf ===================================================================== I want to use binat rule. can anyone help me to solve this issue. - Mahabub Basha.S