I switched it to port 21 and it’s still not working externally, either. PASV ports are opened up in Firewall Rules.
It requests approving the TLS certificate. > On Jul 8, 2015, at 11:03 AM, Ryan Coleman <[email protected]> wrote: > >> >> On Jul 8, 2015, at 9:30 AM, ED Fochler <[email protected] >> <mailto:[email protected]>> wrote: >> >> 10.20.*.* really shouldn’t be on your wan, that’s not routable. Also, >> 214*256+167=54951, outside the range you say you dictated in the conf >> (49500-52500) > I’ll give you that. PITA. >> >> I don’t think PFSense is going to provide you an ftp proxy, both because >> you’re not using port 21, and this document: >> https://doc.pfsense.org/index.php/FTP_without_a_Proxy >> <https://doc.pfsense.org/index.php/FTP_without_a_Proxy> >> >> I’m not convinced that ProFTPd is actually using your conf. I think you’re >> now fighting with ProFTPd, not PFSense. wireshark (or Microsoft Network >> Monitor) is your friend. > > It connects locally on 10.50.1.2 on port 9000. > > 10.20.1.49 is the local IP of my computer when I was out of the house > yesterday. Not the LAN IP of the server. > > 1:1 is routing things correctly to 1.2 otherwise (website is loading without > issue). > > I’ll look more into it tonight. > > >> ED >> >>> On 2015, Jul 7, at 10:49 PM, Ryan Coleman <[email protected]> wrote: >>> >>> Yes. >>> >>> ProFTPd reports the masquerading address properly when starting the service. >>> >>> — >>> Ryan >>> >>> >>>> On Jul 7, 2015, at 5:14 PM, Steve Yates <[email protected]> wrote: >>>> >>>> Ryan Coleman wrote on Tue, Jul 7 2015 at 4:48 pm: >>>> >>>>>> http://www.proftpd.org/docs/directives/linked/config_ref_MasqueradeAddress.html >>>> >>>>> Yep - I’m using that. >>>> >>>>> Command: PORT 10,20,1,49,214,167 >>>> >>>> Pretty sure this would be IP 10.20.1.49, not the public one...is >>>> 10.20.1.x on your WAN? >>>> >>>> -- >>>> >>>> Steve Yates >>>> ITS, Inc. >>>> >>>> >>>> _______________________________________________ >>>> pfSense mailing list >>>> https://lists.pfsense.org/mailman/listinfo/list >>>> Support the project with Gold! https://pfsense.org/gold >>> >>> _______________________________________________ >>> pfSense mailing list >>> https://lists.pfsense.org/mailman/listinfo/list >>> Support the project with Gold! https://pfsense.org/gold >> >> _______________________________________________ >> pfSense mailing list >> https://lists.pfsense.org/mailman/listinfo/list >> Support the project with Gold! https://pfsense.org/gold > > _______________________________________________ > pfSense mailing list > https://lists.pfsense.org/mailman/listinfo/list > <https://lists.pfsense.org/mailman/listinfo/list> > Support the project with Gold! https://pfsense.org/gold > <https://pfsense.org/gold> _______________________________________________ pfSense mailing list https://lists.pfsense.org/mailman/listinfo/list Support the project with Gold! https://pfsense.org/gold
