running ftpd in a jail
fbsd_user
fbsd_user at a1poweruser.com
Thu Jan 15 04:50:20 PST 2004
Your problem is not with FTP, it's with how you have your firewall
Nat configured to handle FTP.
IPFW has punch rule and IPFILTER has ftp built in proxy rule.
In both cases, when they see FTP session start they automatically
create temp rules to allow both passive and active ftp through your
firewall. You only need an single firewall rule to allow port 21
Check it out
-----Original Message-----
From: owner-freebsd-questions at freebsd.org
[mailto:owner-freebsd-questions at freebsd.org]On Behalf Of Hiren
Sent: Thursday, January 15, 2004 4:31 AM
To: FreeBSD-Questions
Subject: running ftpd in a jail
greetings
i am setting up a ftp server.
since i prefer setting all services within jails, i thought i would
setup ftpd within a jail.
i was basically NATing the required ports to the jails.
i realized that ftpd in passive mode was almost impossible to NAT
since
it uses a wide range of ports.
i then resorted to NATing ports 20 and 21 and using active mode for
my
server.
i wanted to know which mode is more secure and how would i go about
setting up ftpd within a jail in passive mode.
i would appreciate advice and comments
thanks
Hiren Patel
_______________________________________________
freebsd-questions at freebsd.org mailing list
http://lists.freebsd.org/mailman/listinfo/freebsd-questions
To unsubscribe, send any mail to
"freebsd-questions-unsubscribe at freebsd.org"
More information about the freebsd-questions
mailing list