[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: ftp proxy



On Wed, Oct 16, 2002 at 05:57:12AM -0400, Nathan Ryan Milford wrote:
> [ ftp-proxy setup ]
It looks like you're missing a rule that passes the redirected
connections to the proxy:
  pass in on $ext_if proto tcp from any to 127.0.0.1 port 8081 keep state
Translation happens before filtering, so the redirected packets already
have destination 127.0.0.1:8081 when they're filtered. You block by
default on $ext_if and I can't spot a rule that would allow the
redirected connection :)
Daniel