Sorry for the replay to myself.. But yes.. is was block rules: block in quick on $ext_if from {127.0.0.1/8,192.168.0.0/16} to any block out quick on $ext_if from any to {127.0.0.1/8,192.168.0.0/16}
i commented this and all works.. Thank Peter for all, you make me re-read all my pf.conf On 5/25/07, Alberich de megres <[EMAIL PROTECTED]> wrote: > > Hi again, > > I didn't wan't to mean that there is no info, I was only making reference > to my ignorance: I don't know if this pass rules were seted corrected or > not. > > I got the same basically, all pasted from ftp-proxy man page or openbsd > "issues with pf and ftp" page. Maybe could it be for block all rules? Don't > know what's happening, > > Thanks for all > > > > On 5/25/07, Peter N. M. Hansteen <[EMAIL PROTECTED]> wrote: > > > > "Alberich de megres" <[EMAIL PROTECTED]> writes: > > > > > But i got this on my rc.local.conf yet.. Are the pass in and out > > > rules for ftp and ftp-data ports right? > > > > your nat rule looks a bit strange, I have > > > > nat on $ext_if from $int_if:network to any -> ($ext_if) static-port > > > > The ftp related rules I have are essentially pasted from the ftp-proxy > > man page, yours differ somewhat. > > > > I have > > > > # [...] > > nat-anchor "ftp-proxy/*" > > rdr-anchor "ftp-proxy/*" > > > > # [...] > > > > rdr pass on $int_if proto tcp from $lan to any port ftp -> 127.0.0.1 port > > 8021 > > > > # [...] > > anchor "ftp-proxy/*" > > > > pass out proto tcp from $proxy to any port ftp > > > > > I add them at my own risk.. none in openbsd ftp and pf issues page > > > and google tell nothing about this. Any help? Thanks > > > > I don't want to appear rude, but there are the ftp-proxy man pages, > > the PF faq and a certain tutorial out there at least. A bit odd if > > you couln't find any info. > > > > Hope this helps, > > -- > > Peter N. M. Hansteen, member of the first RFC 1149 implementation team > > http://www.blug.linux.no/rfc1149/ http://www.datadok.no/ > > http://www.nuug.no/ > > "First, we kill all the spammers" The Usenet Bard, "Twice-forwarded > > tales" > > delilah spamd[29949]: 85.152.224.147: disconnected after 42673 seconds.