Lars Hansson wrote:
OpenBSD does this by default in inetd.conf.
Correction, it doesnt.
---
Lars Hansson
Greg Wooledge wrote:
Personally, I prefer not to reveal the usernames behind the client
connections I'm making, so I use nullidentd. It's very simplistic; it
just returns a constant string for all ident requests. (It doesn't
appear to be in ports; I simply grabbed the source code from
On Tue, 28 Sep 2004 22:03:55 -0400, Greg Wooledge wrote:
Personally, I prefer not to reveal the usernames behind the client
connections I'm making, so I use nullidentd. It's very simplistic; it
just returns a constant string for all ident requests. (It doesn't
appear to be in ports; I simply
[EMAIL PROTECTED] wrote:
http://www.clock.org/~fair/opinion/identd.html
Thanks for giving a link that nicely illustrates my point about people
not understanding what ident does:
The upshot of these assumptions is that when your system contacts the
identd server of a remote system, you can trust
Hi
Yeah, have been studying the pflogs without any luck. No blocks
registered from localhost.. indeed none on port 25 (except for packets
with destination IP's inside the firewall).
I would post the pf.conf but it is rather long.
Andrew
--- Sean [EMAIL PROTECTED] wrote:
A wrote:
Hey all
hi all,
I configured OpenBSD 3.5 PF as said in the FAQ.
For the clients behind my PF firewall to access ftp servers I put this
line in the pf.conf file
rdr on $int_if proto tcp from any to any port 21 - 127.0.0.1:8021
I also have the following line uncommented from /etc/inetd.conf
Siju George [EMAIL PROTECTED] wrote:
I also have the following line uncommented from /etc/inetd.conf
127.0.0.1:8021 stream tcp nowait root /usr/libexec/ftp-proxy ftp-proxy
Now the FTP clients behind the PF firewall cant connect to the ftp
servers on the internet username is authenticated
On Sep 29, 2004, at 5:10 AM, Siju George wrote:
configured OpenBSD 3.5 PF as said in the FAQ.
For the clients behind my PF firewall to access ftp servers I put this
line in the pf.conf file
rdr on $int_if proto tcp from any to any port 21 - 127.0.0.1:8021
I also have the following line uncommented
On Wed, 29 Sep 2004 13:31:52 +0200, Mark Rosenstand [EMAIL PROTECTED] wrote:
If you're running NAT, you'll need to add the -n option to ftp-proxy.
Thanks Mark for the tip.
So I changed the line in /etc/inetd.conf line to
127.0.0.1:8021 stream tcp nowait root /usr/libexec/ftp-proxy
On 29 Sep 2004 03:12:27 -0700, [EMAIL PROTECTED] (Siju George) wrote:
Could someone please point out the trouble?
Yes, configuring the clients to use PASV will sort it.
--
SB: Wait, you mean the costumes themselves give you super powers?
MM: Of course! Why else would we fly around in
how FTP works
http://slacksite.com/other/ftp.html
http://pintday.org/whitepapers/ftp-review.shtml
how to apply the rules in PF using FTP-Proxy
http://www.aei.ca/~pmatulis/pub/obsd_ftp.html
Siju George wrote:
hi all,
I configured OpenBSD 3.5 PF as said in the FAQ.
For the clients behind my PF
on 29/9/04 1:39 pm, Siju George at [EMAIL PROTECTED] wrote:
It is still not working! Like before the ftp clients behind the PF
firewall can access the FTP servers on the internet and user
authentication is also successful but listing of files does not
succed.
Read up on the difference
On Wed, 29 Sep 2004 07:32:07 -0400, Jason Dixon
[EMAIL PROTECTED] wrote:
As pleasant as you are Siju, it's quickly becoming apparent
that you
lack necessary training for becoming a qualified Systems
Administrator.
Very True! but Jason by the Grace of God, with alot of
hardwork
On Tue, 28 Sep 2004 20:10:23 -0500, Matt Sellers [EMAIL PROTECTED] wrote:
Hey guys network diagram as such:
The firewall has three interfaces (re0 = cable) (fxp0 = dsl) (bge0 =
10.0.0.0/24). NOTE: Both cable and DSL are DHCP so im kind of confused
when some rules require an upstream
On Wed, 29 Sep 2004, Siju George wrote:
hi all,
I configured OpenBSD 3.5 PF as said in the FAQ.
For the clients behind my PF firewall to access ftp servers I put this
line in the pf.conf file
rdr on $int_if proto tcp from any to any port 21 - 127.0.0.1:8021
I also have the following
15 matches
Mail list logo