Hi, I've just finished to set up a glftpd behing my magic OpenBSD box. Like you I had problems with the ftp-data ports (cannot list but connected to the ftp). All I've done was correct according to this: http://www.openbsdjournal.org/howto/pfftp.html I suggest you two things: 1/ test ftp-data flow : - I used nc (netcat) to test the tcp ports (eg: on the ftp server nc -l yourtestport, on the client nc ipftpserver yourtestport) if you can establish a connection with nc on the ftp-data ports on you ftp server from a client the problem is the configuration of your ftp server. 2/ ftp configuration : be sure that the ip binded for the ftp-data is your public ip for the external and local ip for the lan
That point was my problem with my glftpd passive configuration. I resolved the problem with this ad in glftpd.conf: ifip 192.168.*.* pasv_addr localip elseip pasv_addr publicip 1 endifip pasv_ports 56101-56399 Now it's working great with TLS too :) Hope this will help you > -----Message d'origine----- > De�: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED] De la part de > Darek Eliasz > Envoy�: lundi 8 mars 2004 18:33 > ��: Maxime Labelle > Cc�: [EMAIL PROTECTED] > Objet�: Re: ftp on dmz > > > From the PF' user guide (http://www.openbsd.org/faq/pf/index.html) > > under "Issues with FTP" here is an example subset of rules which would > > accomplish this: > > But where in this rules is ftp-proxy. I try it before but without any > result. Did you try this solution ?
