Date: Mon, 31 Jan 2005 22:39:03 +0000 From: "eric wyzerski" <ericwyzerski@hotmail.com> To: tbonius@comcast.net Cc: freebsd-questions@freebsd.org Subject: Re: Ftp behind firewall/nat Message-ID: <BAY103-F21F571FDA4CB659E5B7553C07C0@phx.gbl> In-Reply-To: <002301c507e3$fababd80$c900a8c0@ostros>
next in thread | previous in thread | raw e-mail | index | archive | help
Hi, Thanks for the hint but it does'nt work :/. However, now im using passive ftp and the problem is that when I try to login with the client and do the "dir" command, when the ftp server send his IP, it send 10.1.1.6 and the client try to connect to 10.1.1.6! How can I change this Ip for the ip of me routeur via ipnat command? Thanks! Eric >From: "Thomas Foster" <tbonius@comcast.net> >To: "eric wyzerski" ><ericwyzerski@hotmail.com>,<freebsd-questions@freebsd.org> >Subject: Re: Ftp behind firewall/nat >Date: Mon, 31 Jan 2005 14:24:15 -0800 > >You also might want to pass and redirect tcp port 20 (ftp data).. this >seems to work very well for me.. also.. what FTP client are you using? >You might want to use PASV FTP options > >T >----- Original Message ----- From: "eric wyzerski" ><ericwyzerski@hotmail.com> >To: <freebsd-questions@freebsd.org> >Sent: Monday, January 31, 2005 12:11 PM >Subject: Ftp behind firewall/nat > > >>Hi, >> >>For a whole day I tried to make an ftp who is behind the firewall to work >>but Im not able. My ipf rules are: >> >>pass in quick from any to any >>pass out quick from any to any >> >>So it is not a ipf problem. My ipnat rules are: >> >>map rl0 10.0.0.0/8 -> 0/32 >> >>rdr rl0 X.X.X.X/32 port 21 -> 10.1.1.6 port 21 tcp >> >>where X.X.X.X is my external IP, rl0 my external interface and 10.1.1.6 >>the ftp server. I am able to login and when I do the dir command its >>freeze. I have do tcpdump and I see the SYN packet goes but its never get >>answer. I really need help/advise >>Thank you and please CC me the answer because im not in the list >>Eric >> >>_________________________________________________________________ >>Take advantage of powerful junk e-mail filters built on patented >>Microsoft® SmartScreen Technology. >>http://join.msn.com/?pgmarket=en-ca&page=byoa/prem&xAPID=1994&DI=1034&SU=http://hotmail.com/enca&HL=Market_MSNIS_Taglines >>Start enjoying all the benefits of MSN® Premium right now and get the >>first two months FREE*. >> >>_______________________________________________ >>freebsd-questions@freebsd.org mailing list >>http://lists.freebsd.org/mailman/listinfo/freebsd-questions >>To unsubscribe, send any mail to >>"freebsd-questions-unsubscribe@freebsd.org" >> > > _________________________________________________________________ Powerful Parental Controls Let your child discover the best the Internet has to offer. http://join.msn.com/?pgmarket=en-ca&page=byoa/prem&xAPID=1994&DI=1034&SU=http://hotmail.com/enca&HL=Market_MSNIS_Taglines Start enjoying all the benefits of MSN® Premium right now and get the first two months FREE*.
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?BAY103-F21F571FDA4CB659E5B7553C07C0>