Rules in anchor
Dmitry Andrianov
dimas at dataart.com
Thu Jun 8 14:00:19 UTC 2006
Hi.
I just installed ftpsesame ( http://www.sentia.org/projects/ftpsesame/ )
It watches FTP control connections for PORS/PASV commands and creates
rules to allow corresponding data connections.
I start long file transfer, ftpsesame console output says it is allowing
incoming connection to my machine, transfer really starts but pfctl does
not show any rules in the corresponding anchor. Or I'm using it
improperly...
root at host <mailto:root at host> # pfctl -s Anchors
ftpsesame
root at host <mailto:root at spb-gw1> # pfctl -a ftpsesame -s rules
root at host <mailto:root at spb-gw1> #
>From the other hand I know for sure the rule is really created because
otherwise FTP active mode would not work. (And yes, if I stop ftpsesame,
active mode stops working). So either it is some kind of bug in pf/pfctl
or I am missing something...
Regards,
Dmitry Andrianov
PS: FreeBSD 6.0-RELEASE #0
More information about the freebsd-pf
mailing list