On Sep 20, 2007, at 10:17 PM, Jake Conk wrote:
Yes the PF setup appears to be very easy to setup and I've tried doing
it but I can't get it working like the OpenBSD website describes which
is why I'm looking for another solution...
I added this rdr rule to my pf.conf:
rdr on $ext_if proto tcp from any to any port ftp -> 192.168.10.9
port ftp
Then I added this to my filters:
pass in on $ext_if proto tcp from any to any port ftp flags S/SA
I restarted with pfctl and it didn't work. I also fiddled with it a
few other ways and just can't seem to get it working. If you have any
suggestions I'm all ears.
The way I had it working with FreeBSD is I just opened the port with
the above pass rule then I had ipnat forward the traffic to my ftp
server (192.168.10.9) so now that I'm on OpenBSD I'm looking to have a
similar solution since ipnat isn't on OpenBSD and I can't get pf to
forward the traffic for me.
Read the following chapter which covers ftp-proxy.
http://www.openbsd.org/faq/pf/ftp.html
---
Jason Dixon
DixonGroup Consulting
http://www.dixongroup.net
