Re: FreeBSD 6.2 og IPFW

From: Morten Winther (none@mw--mwi.dk.lh.bsd-dk.dk)
Date: Sat 03 Feb 2007 - 16:42:10 CET

Next message: Tue Topholm: "rdr på en bridge firewall"
Previous message: Flemming Jacobsen: "Re: FreeBSD 6.2 og IPFW"
In reply to: Flemming Jacobsen: "Re: FreeBSD 6.2 og IPFW"
Next in thread: Ebbe Hjorth: "Re: FreeBSD 6.2 og IPFW"
Reply: Ebbe Hjorth: "Re: FreeBSD 6.2 og IPFW"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]
Mail actions: [ respond to this message ] [ mail a new topic ]

Date: Sat, 03 Feb 2007 16:42:10 +0100
From: Morten Winther <none@mw--mwi.dk.lh.bsd-dk.dk>
To:  bsd-dk@bsd-dk.dk
Subject: Re: FreeBSD 6.2 og IPFW

>>Jeg har konfigureret den således
>> # Allow access to ProFTPD
>> ${fwcmd} add pass tcp from any to ${oip} 21 keep-state
>>
>>
>
>I passive mode, så laver klienten alle forbindelser til serveren,
>også datakanalen.
>Du skal derfor også tilføje den portrange din server vælger at
>anvende til dataforbindelser.
>
>
Jeg bruger:

# FTP
${fwcmd} add 5000 allow tcp from me 20 to any
${fwcmd} add 5002 allow tcp from any to me 21 keep-state
${fwcmd} add 5005 allow tcp from any to me 50000-59999 keep-state

og så

PassivePorts 50000 59999

i proftpd.conf

-- Best regards

Morten Winther System & Application Architect

MW Interactive

E-mail: mw@mwi.dk Mobile: +45 60 60 66 66 http://www.mwi.dk

Next message: Tue Topholm: "rdr på en bridge firewall"
Previous message: Flemming Jacobsen: "Re: FreeBSD 6.2 og IPFW"
In reply to: Flemming Jacobsen: "Re: FreeBSD 6.2 og IPFW"
Next in thread: Ebbe Hjorth: "Re: FreeBSD 6.2 og IPFW"
Reply: Ebbe Hjorth: "Re: FreeBSD 6.2 og IPFW"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]
Mail actions: [ respond to this message ] [ mail a new topic ]

This archive was generated by hypermail 2b30 : Wed 28 Feb 2007 - 23:00:02 CET