Serving passive ftp through ipfilter and ipnat
Hi all. I have an freebsd ftp server behind a freebsd firewall. The firewall is using ipfilter and ipnat. Everything works great except for my ftp service (have http and smtp too). I am trying to set it up to be passive which i understand is better for those who connect to my server. The way it stands right now, users can connect and login, but can't get a directory listing. They get an error that says Can't build the data connection: no route to host. I have adjusted the following sysctls to limit the data ports that ftpd uses: net.inet.ip.portrange.hifirst: 6 net.inet.ip.portrange.hilast: 65000 To accomidate this port range I have the following in my ipf.rules: pass out proto tcp all keep state pass in quick on fxp1 proto tcp from any to any port 6 65000 flags S keep state My ipnat.rules file contains the following entry to forward port 21 to my ftp server (X.X.X.X = external ip): rdr fxp1 X.X.X.X/32 port 21 - 192.168.1.2 port 21 That's basically all I have set up. I think I need to somehow redirect ports 6 - 65000 to my ftp server to get it to work but I don't know how without putting in 5000 entries in my ipnat.rules. If that's not it, i'm lost. Any suggestions? Thanks, Brian ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
postfix vs. qmail?
For one who wants to host email accounts for multiple domains, which is better? I've started installing and configuring qmail according to the tutorial on qmailrocks.org but i'm wondering if i should stop and consider postfix before pressing on. Thanks. ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Install ports as non-root user?
Hi all. I'm looking to make a non-privileged user the owner of all my software so I don't have to act as root when installing, configuring, and updating software. Furthermore, I won't have to give out the root password to others who need rights to configure software. I noticed my ports collection is entirely owned by root and requires root to install. Is there a way to install ports as a non-root user or allow non-root users to install ports? Thanks, Brian ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
RE: Install ports as non-root user?
Title should have read: Install ports collection as non-root user [EMAIL PROTECTED] wrote: Hi all. I'm looking to make a non-privileged user the owner of all my software so I don't have to act as root when installing, configuring, and updating software. Furthermore, I won't have to give out the root password to others who need rights to configure software. I noticed my ports collection is entirely owned by root and requires root to install. Is there a way to install ports as a non-root user or allow non-root users to install ports? Thanks, Brian I want to ports collection to be owned by a non-root user. Someone suggested sudo. Using sudo will install the app as root, will it not? Thusly requiring root to configure it? ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
RE: Oracle odbc
[EMAIL PROTECTED] wrote: I need to connect my freebsd 5.4 box to an oracle 9 db to query it by means of perl or the statistical software R. How could I set up this odbc connection (I already installed unixODBC, but what next and how to set it up)? Have you any doc to suggest ( I was unable to find anything interesting googling!)? Vittorio I use perl to query my oracle database. You need DBI and DBD::Oracle i believe. I didn't actually install them myself so not sure what extra setup there may be. If you want to use perl conceder posting this question on the beginners@perl.org mailing list. Smart guys there. ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Submitting a port - where to include the output of shar in the se nd_pr report?
Hi all. Hope that subject made sense. I am trying to submit a new port with send_pr. Almost ready to go but where do I include the output of the shar command in the bug report? I am reading the Quick Porting section of the porter's handbook. It states: simply include the output of shar `find port_dir` in a bug report and send it with the http://www.freebsd.org/cgi/man.cgi?query=send-prsektion=1 send-pr(1) program Perhaps in the How To Repeat or Fix sections? Thanks, Brian ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
How to create a man page?
Hi all. I am writing a program with hopes to submit it for inclusion to the ports collection. My last step is to include a man page for my program. Man pages look to be some sort of markup language. What is the standard way to create a man page? Is there some sort of wysiwyg or some other program that makes them easy to create? Thanks, Brian ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Suggest a SCSI RAID controller?
Hi all. I am interested in setting up a scsi hardware raid configuration on a freebsd (5.3) server I am building. Does anyone have any recommendations for a hardware controller? I was led to believe not all hardware controllers work under freebsd. Thanks, Brian ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
problem with net-snmp while installing ethereal from ports
Hi all, i'm trying to install ethereal from ports. It says it depends on shared library netsnmp.6 and the make shortly fails after with the following error: shared library netsnmp.6 does not exist The net-snmp web site says the latest is 5.2 My ports tree was updated two days ago. What am I not getting here? Thanks, Brian ___ [EMAIL PROTECTED] mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
wireless driver for dell latitude d505?
Hi all, I have a dell latitude c505 laptop that has a build-in wireless nic, but when I loaded freebsd 5.3 it did not detect it. I'm guess i have to load a driver via kldload but I have no idea what driver it could be. Anyone know off hand? Dell's website isn't any help. Thanks, Brian ___ [EMAIL PROTECTED] mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Re: wireless driver for dell latitude d505?
--On Monday, November 29, 2004 02:51:53 PM -0500 Brian Barto [EMAIL PROTECTED] wrote: Hi all, I have a dell latitude c505 laptop that has a build-in wireless nic, but when I loaded freebsd 5.3 it did not detect it. I'm guess i have to load a driver via kldload but I have no idea what driver it could be. Anyone know off hand? Dell's website isn't any help. I'm pretty sure all the Dell built-ins are Orinoco cards. man wi(4) should be the right one. It lists the Dell Truemobile card. If your wireless network uses wep, you need to issue a command similar to this: ifconfig wi0 inet 192.168.0.20 netmask 0xff00 ssid my_net \ wepmode on wepkey 0x8736639624 Or, in /etc/rc.conf, use something like this: ifconfig_wi0=inet 192.168.0.20 netmask 0xf00 ssid my_net\ wepmode on wepkey 0x8736639624 If you're using dhcp for ip/mask assignment, then something like this: ifconfig_wi0=inet ssid my_net wepmode on wepkey 0x8736639624 Paul Schmehl ([EMAIL PROTECTED]) Adjunct Information Security Officer The University of Texas at Dallas AVIEN Founding Member http://www.utdallas.edu Thanks Paul and the others who replied. I will definitely be using the extra info you provided. But unfortunately the wi driver doesn't seem to be working. kldload if_wi returns the following output: module_register: module pccard/wi already exists! Module pccard/wi failed to register: 17 module_register: module pci/wi already exists! Module pci/wi failed to register: 17 I'm guessing that this means the the wi driver is already included in the kernel build? ___ [EMAIL PROTECTED] mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]