rdr for ftp-proxy doesn't work
Hexren
me at hexren.net
Tue Feb 22 07:03:59 GMT 2005
GPT> Giovanni P. Tirloni wrote:
>> Nick Buraglio wrote:
>>
>>> Try adding:
>>>
>>> pass in from any to any
>>> pass out from any to any
>>>
>>> to the rules section. I believe you have to tell it to actually
>>> handle the traffic.
>>
>>
>> I tried that but it didn't help. Then I tried changing 127.0.0.1 by
>> another external IP that I knew it had a ftp server running: all packets
>> were redirected and I could login.
>>
>> There seems to be something locking the redirection to 127.0.0.1 and/or
>> the internal interface address.
GPT> My temporary fix was to use ipfw and ports/ftp/frox but I'd like to
GPT> help to investigate this situation. I've tried to enable transparent ftp
GPT> proxy with pf and ftp-proxy on another 5.3-STABLE and it didn't work
GPT> also. No packet gets redirect to loopback but it redirects for anything
GPT> outside.
GPT> --
GPT> Giovanni P. Tirloni
GPT> _______________________________________________
GPT> freebsd-pf at freebsd.org mailing list
GPT> http://lists.freebsd.org/mailman/listinfo/freebsd-pf
GPT> To unsubscribe, send any mail to "freebsd-pf-unsubscribe at freebsd.org"
---------------------------------------------
I would guess that it would be wiser to use not the loopback address
but a "normal" address of the proxy you want to use in the
redirection.
Only a guess.
Hexren
More information about the freebsd-pf
mailing list