Date: Tue, 11 Apr 2000 19:13:39 -0500 From: Scott Graves <sgraves66@home.com> To: freebsd-questions@FreeBSD.ORG Subject: NATD and IPFW Message-ID: <38F3BFB3.71F840FA@home.com>
next in thread | raw e-mail | index | archive | help
I recently switched from a Linux gateway to FBSD 4.0. With Linux I had
IP masquerading enabled (similar to NAT) and basically openned only the
IP ports which were used by my employees.
With FBSD, by default, no incomming connections are allowed. I have
successfully enabled WWW, DNS, SMTP, POP3 and RealAudio through the FBSD
gateway machine running NATD. However, after openning ports 20 and 21
for FTP access, I receive this error when trying to list ftp dir
contents:
Apr 11 18:30:45 gateway natd[114]: failed to write packet back
(Permission denied)
I am able to connect to FTP sites, but not dn/up or list files without
receiving this error. This is what I have in rc.firewall which should
allow for FTP access:
# Allow FTP connections
${fwcmd} add pass tcp from any to any 21 setup
${fwcmd} add pass tcp from any to any 20 setup
If I add:
${fwcmd} add pass tcp from any to any setup
Everything works properly (of course). But I do not want to allow all
TCP connections to the internet.
What am I missing?
Thanks,
Scott Graves
To Unsubscribe: send mail to majordomo@FreeBSD.org
with "unsubscribe freebsd-questions" in the body of the message
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?38F3BFB3.71F840FA>