ftp klient bag pf på FreeBSD

From: Claus Guttesen (none@cguttesen--yahoo.dk.lh.bsd-dk.dk)
Date: Thu 07 Apr 2005 - 17:32:35 CEST

Next message: Martin Kjeldsen: "Ændring af partioner"
Previous message: Phil Regnauld: "Re: Job mulighed"
Next in thread: Sven Esbjerg: "Re: ftp klient bag pf på FreeBSD"
Reply: Sven Esbjerg: "Re: ftp klient bag pf på FreeBSD"
Maybe reply: Claus Guttesen: "Re: ftp klient bag pf på FreeBSD"
Maybe reply: Claus Guttesen: "Re: ftp klient bag pf på FreeBSD"
Maybe reply: Claus Guttesen: "Re: ftp klient bag pf på FreeBSD"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]
Mail actions: [ respond to this message ] [ mail a new topic ]

Date: Thu, 7 Apr 2005 17:32:35 +0200 (CEST)
From: Claus Guttesen <none@cguttesen--yahoo.dk.lh.bsd-dk.dk>
Subject: ftp klient bag pf på FreeBSD
To: bsd-dk <none@bsd-dk--bsd-dk.dk.lh.bsd-dk.dk>

Hej.

Har sat pf op ud fra
http://www.openbsd.org/faq/pf/ftp.html. På trods at
dette kan jeg ikke hente fil via f.eks. fetch. Eks. på
fetch-kommando:

fetch
ftp://ftp.no.freebsd.org/pub/FreeBSD/ports/amd64/packages-5.3-release/All/gettext-0.13.1_1.tbz

Har brugt fetch med og uden -p.

/etc/pf.conf:

rdr on $int_if proto tcp from any to any port ftp ->
127.0.0.1 port 8021

pass in quick on $int_if proto tcp from $internal_net
to any port < 49151 flags S/SA keep state # ftp

/etc:inetd.conf:

ftp-proxy stream tcp nowait root
/usr/libexec/ftp-proxy ftp-proxy -n

ps ax|grep inetd
655 ?? Is 0:00,02 inetd

tcpdump -n -e -ttt -i pflog0 host 192.168.1.19:

8. 319924 rule 0/0(match): block in on em0: IP
192.168.1.19.52613 > 158.36.2.10.61771: S
1674434027:1674434027(0) win 65535 <mss
1460,nop,nop,sackOK,[|tcp]>

2. 999996 rule 0/0(match): block in on em0: IP
192.168.1.19.52613 > 158.36.2.10.61771: S
1674434027:1674434027(0) win 65535 <mss
1460,nop,nop,sackOK,[|tcp]>

Hvorfor siger den block in on em0 når jeg tillader alt
over port 49151?

Hilsen
Claus

Next message: Martin Kjeldsen: "Ændring af partioner"
Previous message: Phil Regnauld: "Re: Job mulighed"
Next in thread: Sven Esbjerg: "Re: ftp klient bag pf på FreeBSD"
Reply: Sven Esbjerg: "Re: ftp klient bag pf på FreeBSD"
Maybe reply: Claus Guttesen: "Re: ftp klient bag pf på FreeBSD"
Maybe reply: Claus Guttesen: "Re: ftp klient bag pf på FreeBSD"
Maybe reply: Claus Guttesen: "Re: ftp klient bag pf på FreeBSD"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]
Mail actions: [ respond to this message ] [ mail a new topic ]

This archive was generated by hypermail 2b30 : Wed 15 Nov 2006 - 18:24:49 CET