Sergio,
Ve se isso nao e o seu caso!
At this point only passive mode FTP connections will function. To enable
active mode connections, the ftp-data connection that the FTP server
initiates must be passed in on the firewall. Unfortunately, the port
that this connection comes in on can't be known beforehand, only the
range that it falls within. What is known, however, is that the
connection will be initiated from port 20 (ftp-data port) and that
ftp-proxy will be accepting the connection (and then relaying data to
the client). Since ftp-proxy runs as the user proxy, the user keyword
can be used in the filter rule.
pass in on $ext_if inet proto tcp from port 20 to ($ext_if) \
user proxy flags S/SA keep state
http://www.openbsd.org/faq/pf/ftp.html
Aqui funciona perfeitamente!!
3) NOVAMENTE : NÃO CONSIGO FAZER O FTP FUNCIONAR
CORRETAMENTE DO PF.
O ftp-proxy tá instalado e rodando via inetd :
ftp-proxy stream tcp nowait root /usr/libexec/ftp-proxy
ftp-proxy
tcp4 0 0 *.8021 *.*
LISTEN
no pf :
rdr on $int_if proto tcp from any to ! <me> port ftp -> 127.0.0.1 port
8021
Ftp via squid tá ok, mas quando tem que sair direto do cliente fazendo
nat
não funciona de jeito nenhum.tinfo/freebsd_fug.com.br
_______________________________________________
Freebsd mailing list
Freebsd@fug.com.br
http://mail.fug.com.br/mailman/listinfo/freebsd_fug.com.br