running ftpd in a jail

Dan Pelleg daniel+bsd at
Thu Jan 15 04:34:20 PST 2004

Hiren <hnpatel at> writes:

> greetings 
> i am setting up a ftp server.
> since i prefer setting all services within jails, i thought i would
> setup ftpd within a jail.
> i was basically NATing the required ports to the jails.
> i realized that ftpd in passive mode was almost impossible to NAT since
> it uses a wide range of ports.
> i then resorted to NATing ports 20 and 21 and using active mode for my
> server.
> i wanted to know which mode is more secure and how would i go about
> setting up ftpd within a jail in passive mode.
> i would appreciate advice and comments

You can use the punch_fw keyword to natd(8) for that.


  Dan Pelleg

More information about the freebsd-questions mailing list