Re: ftp behind firewall
Hi,
I installed proftp 1.2.4 from deb source and copied these two lines
for them.
My internal firewall IP is 10.0.0.1 and my internal server IP is
10.0.1.3.
I opened 50000 to 50020 ports at firewall with:
redir --lport=20 --cport=20 --caddr=10.0.1.3 --ftp > /dev/null &
redir --lport=21 --cport=21 --caddr=10.0.1.3 --ftp > /dev/null &
redir --lport=50000 --cport=50000 --caddr=10.0.1.3 --ftp >
/dev/null &
redir --lport=50001 --cport=50001 --caddr=10.0.1.3 --ftp >
/dev/null &
redir --lport=50002 --cport=50002 --caddr=10.0.1.3 --ftp >
/dev/null &
redir --lport=50003 --cport=50003 --caddr=10.0.1.3 --ftp >
/dev/null &
redir --lport=50004 --cport=50004 --caddr=10.0.1.3 --ftp >
/dev/null &
redir --lport=50005 --cport=50005 --caddr=10.0.1.3 --ftp >
/dev/null &
redir --lport=50006 --cport=50006 --caddr=10.0.1.3 --ftp >
/dev/null &
redir --lport=50007 --cport=50007 --caddr=10.0.1.3 --ftp >
/dev/null &
redir --lport=50008 --cport=50008 --caddr=10.0.1.3 --ftp >
/dev/null &
redir --lport=50009 --cport=50009 --caddr=10.0.1.3 --ftp >
/dev/null &
redir --lport=50010 --cport=50010 --caddr=10.0.1.3 --ftp >
/dev/null &
redir --lport=50011 --cport=50011 --caddr=10.0.1.3 --ftp >
/dev/null &
redir --lport=50012 --cport=50012 --caddr=10.0.1.3 --ftp >
/dev/null &
redir --lport=50013 --cport=50013 --caddr=10.0.1.3 --ftp >
/dev/null &
redir --lport=50014 --cport=50014 --caddr=10.0.1.3 --ftp >
/dev/null &
redir --lport=50015 --cport=50015 --caddr=10.0.1.3 --ftp >
/dev/null &
redir --lport=50016 --cport=50016 --caddr=10.0.1.3 --ftp >
/dev/null &
redir --lport=50017 --cport=50017 --caddr=10.0.1.3 --ftp >
/dev/null &
redir --lport=50018 --cport=50018 --caddr=10.0.1.3 --ftp >
/dev/null &
redir --lport=50019 --cport=50019 --caddr=10.0.1.3 --ftp >
/dev/null &
redir --lport=50020 --cport=50020 --caddr=10.0.1.3 --ftp >
/dev/null &
It's still getting error when not using passive directive.
==> /var/log/syslog <==
Nov 15 16:53:15 machine proftpd[5113]: machine.com
(firewall.machine.com [10.0.0.1]) - Refused PORT 10,0,2,1,13,157
(address mismatch).
What can be wrong?
TIA, Paulo Henrique
Em Thu, 15 Nov 2001 18:57:16 +0100, François THOMAS
<francoist@alsdesign.fr> escreveu:
>
>
> > -----Message d'origine-----
> > De : Paulo Henrique Baptista de Oliveira
> > [mailto:baptista@linuxsolutions.com.br]
> > Envoyé : jeudi 15 novembre 2001 18:58
> > À : François THOMAS
> > Cc : debian-user@lists.debian.org
> > Objet : Re: ftp behind firewall
> >
> >
> >
> > Hi Thomas,
> > I tried this with my machine and got
> > Restarting proftpd daemon... - Fatal: unknown configuration
> directive
> > 'PassivePorts' on line 2 of '/etc/proftpd.conf'.
> > when restarting proftpd.
> > My proftpd version is
> > ii proftpd 1.2.0pre10-2.0potato1
> > Versatile, virtual-hosting FTP daemon
> > What can be wrong?
> >
>
> This version of proftpd doesn't support this directive. Get the
> 1.2.4 on
> http://www.proftpd.org
> I think you'll be able to compile it without trouble !
> Tip: configure, make, and do your tests.. make install after if
> successful !
> Hope that helps.. Not much time now, but I will respond to you
> tomorrow if
> you need more help.
> Regards
> François
>
>
--
Paulo Henrique B de Oliveira
Gerente de Operações - Linux Solutions -
http://www.linuxsolutions.com.br
O maior conteúdo de Linux em língua portuguesa - OLinux -
http://www.olinux.com.br
(21) 2526-7262 ramal 31
Reply to: