IPFW firewall NAT and active FTP
Artyom Viklenko
artem at aws-net.org.ua
Wed Jan 12 06:15:02 UTC 2011
12.01.2011 01:06, Brett Glass пишет:
> I'm working with a customer who has a FreeBSD 8.0 firewall, set up with firewall
> NAT in IPFW. It uses one-to-one static NAT to redirect FTP sessions
> originating on the outside to an FTP server on the inside. The FTP server is
> accessible via text-based FTP clients, but not via Web-based clients such as
> Mozilla Firefox or Internet Explorer. The internal FTP server is also a FreeBSD
> machine.
>
Does FTP server enforces any limits for sessions per ip?
In past I saw that IE can open up to four concurrent sessions.
If plain text ftp clients works, IMHO it's not a NAT problem.
Also check config of ipfw is it supports both active and passive
FTP transfers.
> He's wondering if the problem has to do with the lack of a "firewall punching"
> setting (which exists in natd but not in IPFW's built-in NAT). Can anyone
> suggest what might be causing the problem?
>
> --Brett Glass
> _______________________________________________
> freebsd-net at freebsd.org mailing list
> http://lists.freebsd.org/mailman/listinfo/freebsd-net
> To unsubscribe, send any mail to "freebsd-net-unsubscribe at freebsd.org"
--
Sincerely yours,
Artyom Viklenko.
-------------------------------------------------------
artem at aws-net.org.ua | http://www.aws-net.org.ua/~artem
artem at viklenko.net | JID: artem at jabber.aws-net.org.ua
FreeBSD: The Power to Serve - http://www.freebsd.org
More information about the freebsd-net
mailing list