From owner-freebsd-questions  Mon Jul 15 20: 5:21 2002
Delivered-To: freebsd-questions@freebsd.org
Received: from mx1.FreeBSD.org (mx1.FreeBSD.org [216.136.204.125])
	by hub.freebsd.org (Postfix) with ESMTP id 3680037B400
	for <freebsd-questions@freebsd.org>; Mon, 15 Jul 2002 20:05:19 -0700 (PDT)
Received: from d188h80.mcb.uconn.edu (d188h80.mcb.uconn.edu [137.99.188.80])
	by mx1.FreeBSD.org (Postfix) with SMTP id 9374A43E31
	for <freebsd-questions@freebsd.org>; Mon, 15 Jul 2002 20:05:18 -0700 (PDT)
	(envelope-from sirmoo@cowbert.2y.net)
Received: (qmail 32736 invoked by uid 1001); 16 Jul 2002 03:05:14 -0000
Date: Mon, 15 Jul 2002 23:05:14 -0400
From: "Peter C. Lai" <sirmoo@cowbert.2y.net>
To: freebsd-questions@freebsd.org
Subject: tunneling ftp through ipfw
Message-ID: <20020715230514.A32437@cowbert.2y.net>
Reply-To: peter.lai@uconn.edu
Mime-Version: 1.0
Content-Type: text/plain; charset=us-ascii
Content-Disposition: inline
User-Agent: Mutt/1.2.5i
Sender: owner-freebsd-questions@FreeBSD.ORG
Precedence: bulk
List-ID: <freebsd-questions.FreeBSD.ORG>
List-Archive: <http://docs.freebsd.org/mail/> (Web Archive)
List-Help: <mailto:majordomo@FreeBSD.ORG?subject=help> (List Instructions)
List-Subscribe: <mailto:majordomo@FreeBSD.ORG?subject=subscribe%20freebsd-questions>
List-Unsubscribe: <mailto:majordomo@FreeBSD.ORG?subject=unsubscribe%20freebsd-questions>
X-Loop: FreeBSD.ORG


I need to be able to tunnel ftp through a nat gateway to my
freebsd server.
The topology looks like this:

client	--------> win2k ICS		--------> freebsd ftp box
(192.168.0.2) 	  (192.168.0.1 | External IP)	  (External IP2)

I can ftp normally since the win2k gateway is quite forgiving.
However, I want to avoid using plaintext authentication to the freebsd
box, so I want to use SSH to tunnel the ftp-control channel.
I can set up the outgoing tunnel fine.
I can do 'ftp localhost' on the client and log in fine. I cannot
establish a data connection though.
Furthermore, I have tried this with stunnel and it also doesn't work.
How would I do this? I have to use FTP because the ftp is being done
by some oldish win32 program that doesn't do sftp etc.

thanks
pete

-- 
Peter C. Lai
University of Connecticut
Dept. of Molecular and Cell Biology | Undergraduate Research Assistant
Yale University School of Medicine
Center for Medical Informatics | Research Assistant
http://cowbert.2y.net/


To Unsubscribe: send mail to majordomo@FreeBSD.org
with "unsubscribe freebsd-questions" in the body of the message