-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 Rick Karcher wrote: > > hi , > > > > I would like to ask you How can I redirect incoming ftp conections > > to another server in > > my LAN ? > > I have an Ipv4/ipv6 Ftp server (vsftpd) and have only one dynamic > > ipv4 ... > > The Idea is redirect the ipv4 ftp2.domain2.com to my internal server > > which is inside the LAN .
You would need to use "Passive FTP" everywhere for this work. In general you will want to simply avoid this as it is nasty and requires clients t reconfigure. When it is a private FTP, just go the SCP way and start using SCP for filetransfers which doesn't have this problem and works over NATs and portforwards without issues. Also your user/pass are then secure. You could try doing a PREROUTING NAT trick: 8<---------------------------------------------------------------------- modprobe ip_nat_ftp modprobe ip_conntrack_ftp iptables -t nat -A PREROUTING -i $OUTSIDE -d $INET_IP -p tcp --dport 21 - -j DNAT --to $PRIVIP - ---------------------------------------------------------------------->8 (guessed from head, so you might need to tweak it a bit, depending on the firewall it self you might need some extra accept's) Greets, Jeroen -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.4.7 (MingW32) Comment: Jeroen Massar / http://unfix.org/~jeroen/ iHUEARECADUFAkcWc5ouFIAAAAAAFQAQcGthLWFkZHJlc3NAZ251cGcub3JnamVy b2VuQHVuZml4Lm9yZwAKCRApqihSMz58I2eyAJ9HIvxXvGZoCiaZGKidSedYcCpg 0QCeOpQ1+XT1j5PvO220tHhsoy1pLlw= =Qynp -----END PGP SIGNATURE----- _______________________________________________ Users mailing list Users@ipv6.org https://lists.ipv6.org/mailman/listinfo/users
