Firewall rules for ftp
Martin Schweizer
pcservi at spectraweb.ch
Sat Feb 14 00:51:58 PST 2004
Hello
Here are my ftp rules:
[snip
# FTP
ipfw add allow tcp from any to any 20 keep-state
ipfw add allow tcp from any to any 21 keep-state
ipfw add allow tcp from any 20 to me 1024-49151 keep-state # aktives FTP
ipfw add allow tcp from any 20 to 192.168.1.1/24 1024-49151 keep-state
ipfw add allow tcp from me 1024-49151 to any keep-state # passives FTP 1.
[snip]
Am Fri, Feb 13, 2004 at 09:23:07AM -0500 JJB schrieb:
> It would help if you posted you ipfw rules file so people can review
> them to look for your problem.
>
> -----Original Message-----
> From: owner-freebsd-questions at freebsd.org
> [mailto:owner-freebsd-questions at freebsd.org]On Behalf Of Martin
> Schweizer
> Sent: Friday, February 13, 2004 2:07 AM
> To: freebsd-questions at freebsd.org
> Subject: Firewall rules for ftp
>
> Hello
>
> Until now I tested a lot regarding ftp and ipfw but with no 100%
> success.
> What are the correct ipfw rules for ftp (regarding dir and ls,
> passive etc.)?
>
> System: FreeBSD 4.9, NAT, ipfw, LAN 192.168.1.0/24, WAN: dyn. WAN ip
> over ADSL
--
Regards
Martin Schweizer
<info at pc-service.ch>
PC-Service M. Schweizer; Gewerbehaus Schwarz; CH-8608 Bubikon
Tel. +41 55 243 30 00; Fax: +41 55 243 33 22; http://www.pc-service.ch;
public key : http://www.pc-service.ch/pgp/public_key.asc;
fingerprint: EC21 CA4D 5C78 BC2D 73B7 10F9 C1AE 1691 D30F D239;
-------------- next part --------------
A non-text attachment was scrubbed...
Name: not available
Type: application/pgp-signature
Size: 187 bytes
Desc: not available
Url : http://lists.freebsd.org/pipermail/freebsd-questions/attachments/20040214/59e2fe04/attachment.bin
More information about the freebsd-questions
mailing list