[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

RE: FTP clients behind PF can connect to ftp serves but cannot list files why?



> On Wed, 29 Sep 2004 07:32:07 -0400, Jason Dixon 
> <[email protected]> wrote:
> > As pleasant as you are Siju, it's quickly becoming apparent 
> that you 
> > lack necessary training for becoming a qualified Systems 
> > Administrator.
> 
> Very True! but Jason by the Grace of God, with alot of 
> hardwork and help from great guys like you I'll also one day 
> become as good as you guys are.
> 
> Thanks a lot for all the help and replies.
At least you have a great humour :)
Well first step to be a good admin is to read the fine manual :
http://www.openbsd.org/faq/pf/ftp.html
Did you check that you do NOT filter out your ftp connections ?
On my setup Openbsd 3.5) for example I have:
rdr on $InternalIf proto tcp from any to any port ftp -> 127.0.0.1 port
ftp-proxy
pass in on $InternalIf inet proto tcp from $InternalIf:network to lo0 port
ftp-proxy modulate state flags S/SA
pass out on $InternalIf inet proto tcp from $InternalIf to
$InternalIf:network user proxy modulate state flags S/SA
pass in on $ExternalIf inet proto tcp from any to any user proxy modulate
state flags S/SA
And in inetd.conf:
127.0.0.1:ftp-proxy     stream  tcp     nowait  root
/usr/libexec/ftp-proxy  ftp-proxy -t 3600
Cheers
Philippe