Date: Tue, 12 Apr 2005 13:07:42 +0400 From: "Andrew P." <infofarmer@mail.ru> To: clem.twain@gmail.com Cc: Chris Knipe <savage@savage.za.org> Subject: Re: weird problem with ipfw and ftp Message-ID: <425B8FDE.6030001@mail.ru> In-Reply-To: <425B8024.5060608@gmail.com> References: <425B7682.9020705@gmail.com> <001001c53f31$f946c7c0$0a01a8c0@ops.cenergynetworks.com> <425B8024.5060608@gmail.com>
next in thread | previous in thread | raw e-mail | index | archive | help
Clement Twine wrote: > so, should the following work? > > >> ipfw add 00010 allow tcp from any to 10.0.0.1 21 > >> ipfw add 00011 allow tcp from 10.0.0.1 21 to any > >> ipfw add 00012 allow tcp from any to 10.0.0.1 20 > >> ipfw add 00013 allow tcp from 10.0.0.1 20 to any This last ruleset will work ok. Here's mine: # ftp server ipfw add 331 allow tcp from 172.17.0.0/24 to 172.17.0.1 20 ipfw add 332 allow tcp from 172.17.0.1 20 to 172.17.0.0/24 ipfw add 333 allow tcp from 172.17.0.0/24 to 172.17.0.1 21 ipfw add 334 allow tcp from 172.17.0.1 21 to 172.17.0.0/24 Works for me :) Best wishes, Andrew P.
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?425B8FDE.6030001>