ftp connections not working from firewall box
Scott Ullrich
sullrich at gmail.com
Thu Jul 7 18:37:26 GMT 2005
On 7/7/05, Michael Weiser <michael at weiser.dinsnail.net> wrote:
> Hi again,
>
> another problem with my new pftpx setup is that because of
>
> rdr on xl0 inet proto tcp from any to any port = ftp -> 127.0.0.1 port 8021
>
> only connections coming in via the internal interface get redirected to
> pftpx. Due to that FTP connections originating on the machine itself
> don't work because they leave directly via the external interface so that
> pftpx doesn't see them to add the proper firewall rules.
>
> Is there a workaround or proper solution for this (possibly including a
> rant about my braindamage ;) ?
If you default to deny on the WAN what happens if you change the rdr
statement to:
rdr inet proto tcp from any to any port = ftp -> 127.0.0.1 port 8021
Scott
More information about the freebsd-pf
mailing list