FTP ruleset questions
I've having difficulties with my FTP ruleset.
I'm using the FTP-PROXY on openbsd for CLIENT ftp access from my LAN to INTERNET.
transparent rdr to port 8021 on localhost for all adresses on the LAN.
I want to add rules in order for my new FTP server to be accessed via Internet.
How can I do that ?.
Without more information, any answer is a guess. We aren't mind readers.
Let us pretend that you wish to use an FTP server on your local LAN, and currently have the following configuration:
/etc/pf.conf:The easiest way to add an FTP server on the local network is to add a second instance of ftp-proxy, using a different port number.
You cannot add a second instance through /etc/rc.conf or /etc/rc.conf.local, as these just set variables for /etc/rc. Add the second instance in /etc/rc.local, instead.
Your first instance (set up via /etc/rc.conf.local) listens, by default, to the loopback interface port 8021.
The instance you script in /etc/rc.local will listen on port 21, and route the output to the appropriate FTP server on your LAN.
Here's an example (in /etc/rc.local) that listens on an external interface on the 192 network and routes traffic to the server on the 10 network:
. . . ftp-proxy -R 10.10.10.1 -p 21 -b 192.168.0.1 . .
Last edited by jggimi; 25th November 2008 at 04:09 PM. Reason: clarification
|Thread||Thread Starter||Forum||Replies||Last Post|
|Some Questions ??||ultranothing||OpenBSD Security||6||4th September 2009 04:59 PM|
|first match vs last match ruleset design (pf vs iptables)||zelut||FreeBSD Security||5||12th July 2009 08:13 AM|
|ipfw ruleset double check||l2fl2f||FreeBSD Security||3||26th March 2009 06:32 AM|
|A few questions on OpenBSD?||php111||OpenBSD General||24||1st November 2008 09:18 AM|
|rc.conf questions||starbuck||FreeBSD General||2||29th July 2008 06:16 PM|