[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

pf and ftp

To: misc@openbsd.org
Subject: pf and ftp
From: James Ashton <admin@gitflorida.com>
Date: Sun, 16 Jun 2002 00:39:30 -0400

ok I'm not totaly positive this is a PF issue but I cant think of anything else it could be.

I am running 3.0 and pf as a home firewall.
I have port 2121 on my external IP RDRed to port 21 on 192.168.1.102 internaly
I have pf rules to allow connections to port 2121 on the external interface.
PF has had ftp running through it for months.
Today it stoped working??

Here is my pf.conf file:

#Pass out all info and in its return info
pass out quick on xl0 proto tcp from 192.168.1.0/24 to any keep state
pass out quick on xl0 proto udp from 192.168.1.0/24 to any keep state
pass out quick on xl0 proto icmp from 192.168.1.0/24 to any keep state

#pass in all FTP Packets
pass in log quick on xl0 proto tcp from any to any port 2121
pass in log quick on xl0 proto udp from any to any port 2121

#Block all else
block in log quick on xl0 all

my NAT.conf file

#nat internal IPs to xl0
nat on xl0 from 192.168.1.0/24 to any -> xl0

# redirect incomming ftp traffic to ftp server bihinf firewall
rdr on xl0 proto tcp from any to 24.27.204.44/32 port 2121 -> 192.168.1.102 port 21
rdr on xl0 proto udp from any to 24.27.204.44/32 port 2121 -> 192.168.1.102 port 21

Any ideas??

This was working fine 2 days ago. Did pf break?? Is this conf not right? Its been months since I looked at it last and 2 people have access to the
box other than me.

HELP.

_______________________________
James Ashton
VP, Entertain Florida

Entertain Florida, Inc
13840 Osprey Links Dr, #219
Orlando Fl, 32837

407-859-5218

Follow-Ups:
- Re: pf and ftp
  - From: "Scott Sandeman-Allen (RSCorp)" <scott@rscorp.ab.ca>

Prev by Date: DHCP Question
Next by Date: How to translate cylinders/heads/sectors to what OpenBSD disklabel wants
Prev by thread: Re: DHCP Question
Next by thread: Re: pf and ftp
Index(es):
- Date
- Thread