Hey, guys ..
Some of my users want to use FTP service from a VLAN on my side, over to
arbitrary servers on the net.
In the ideal situation this would work for both passive and active FTP,
however, passive only will do nicely.
They machines on the LAN have a routeable IP, but I don't want to punch
big holes in my firewall rules.
I'm trying to find out how the FTP helper works, and if it can help me
in this situation.
I can see my system running both ftpsesame and pftpx, and I am hoping
one of these can manipulate PF so that my situation may be implemented.
Here is what I got:
NET - pf box - vlan - client box
Client box has routeable IP, so there isn't a need for NAT, and no need
to modify the wire data either, as client will identify with correct IP.
I just want something to open the ports necessary for FTP to work on
client side, and close them when the show is over.
Do I need to add some "rdr rules" in my ruleset, so that traffic going
to FTP servers on the net from this client gets redirected to FTP proxy?
"Userland FTP helper" is enabled on the VLAN, do I need to do anything
besides that ?
Thanks for your time
-- Torbjørn
---------------------------------------------------------------------
To unsubscribe, e-mail: [EMAIL PROTECTED]
For additional commands, e-mail: [EMAIL PROTECTED]
