> -----Original Message----- > From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED] > On Behalf Of Karl O. Pinc > Sent: Friday, July 15, 2005 7:49 AM > To: [EMAIL PROTECTED] > Cc: [email protected] > Subject: Re: Problem with NAT and FTP server > > > > On 07/14/2005 09:42:49 PM, [EMAIL PROTECTED] wrote: > > In my configuration there is a problem providing publicly-accessible > > anonymous > > FTP service. > > > ... > > How about > > no nat on $ext_if1 from a.b.c.197 to any > nat on $ext_if1 from $lan_net to any
Thanks to all who replied both on-list and in private email. The above suggestion "no nat" made me realize that there was no need to be rdr'ing the a.b.c.197 address. Thus the ruleset simplified to one rule allowing incoming ftp requests on the publicly known IP address. There is no need at all for NAT on this address. All problems went away and both OpenBSD's ftpd and pure-ftpd work as expected.
