[Date Prev][Date Next] [Thread Prev][Thread Next] [Date Index] [Thread Index]

ftp passthrought

a give external access to internal users on the machine that act as a
firewall giving the following commands:
(is a batch run when a local machine is enbled and the opposite when is
disabled - local machine have addresses as 172.24.8.y public addresses
are of the kind A.B.C.y where $t4=y)

ifconfig eth0:$t4 $t4 netmask

iptables -t nat -A POSTROUTING -s $172.24.8.$t4 -j SNAT --to-source

iptables -t nat -A PREROUTING -d A.B.C.$t4 -j DNAT --to-destination

all works fine, except ftp, since when someone try to connet ther is a
message PORT 172.24.8.y .... that of course is not recognized by remote
what is the better and cleanest way to fix this problem ?

Reply to: