support for natted ftp server and passive mode
Stephen Clark
sclark46 at earthlink.net
Fri Nov 21 06:19:37 PST 2008
Bartosz Stec wrote:
> Stephen Clark pisze:
>> Do any of the firewall products on FreeBSD provide support
>> for a natted ftp server sitting behind the FreeBSD FW.
>>
>> Without having the ftp server advertise the external address
>> in its passive mode packet, in other words have the firewall
>> product look inside the packet and change the internal address
>> in the data portion of the packet to the external address.
>>
>> Thanks,
>> Steve
>>
> pf + ftp-proxy
>
> http://www.openbsd.org/cgi-bin/man.cgi?query=ftp-proxy&sektion=8&manpath=OpenBSD+4.4
>
>
Thanks,
this seems to do the trick on 6.3 - unfortunately it doesn't work on FreeBSD
4.9. We have a number of installations which are still running on 4.9 :(
Steve
--
"They that give up essential liberty to obtain temporary safety,
deserve neither liberty nor safety." (Ben Franklin)
"The course of history shows that as a government grows, liberty
decreases." (Thomas Jefferson)
More information about the freebsd-stable
mailing list