[ previous ] [ next ] [ threads ]
 
 From:  "Mr. listman" <savethelist at hotmail dot com>
 To:  m0n0wall at lists dot m0n0 dot ch
 Subject:  Re: [m0n0wall] FTP Server Issues Behind Monowall-Take Two
 Date:  Thu, 25 Nov 2004 11:26:59 +0100 
There is a very simple solution for this problem, but i do belive that 
Manual, would have to do some changes in the application.

What those guys at Leaf Bearing did was make use of
the following helper modules, and maybe some more..

ip_conntrack_ftp
ip_nat_ftp

and also, i think the were thinking into consideration in Shorewall which 
handles the iptables,

with these activated, it was very simple to do an inbound nat to the ftp 
server on the respective ports.



>From: "Xawiers" <xawiers at undine dot lt>
>To: m0n0wall at lists dot m0n0 dot ch
>Subject: Re: [m0n0wall] FTP Server Issues Behind Monowall-Take Two
>Date: Thu, 25 Nov 2004 07:31:33 +0200 (EET)
>
>-----BEGIN PGP SIGNED MESSAGE-----
>Hash: SHA1
>
>Dino Edwards parašė:
> > Has anyone gotten FTP to work behind monowall with an IP address not
> > assigned to the WAN interface? I've tried 1:1 mapping, and server nat
> > but nothing works. I have gotten it to work with the IP address
> > assigned to the WAN interface but beyond that no workie! My feeling is
> > that FTP implementation is broke when it comes to server nat or 1:1
> > mapping with an IP not assigned to the WAN interface. I've gotten a
> > lot of suggestions from people already, but most of the time I've
> > gotten suggestions that don't jive with the way monowall works.
>
>Try to configure FTP server to act in passive mode. Then define passive
>port range (example 50000-60000), open on m0n0wall these ports and
>redirect them to Your FTP server. This should help You.
>
>BR
>__________________________
>Xawiers
>
>-----BEGIN PGP SIGNATURE-----
>Version: GnuPG v1.2.6 (FreeBSD)
>
>iD8DBQFBpW40qIz0qsSkSHURAuriAKCYcHoLUiomDMmuwLmY8CbBJYBRrACfcecO
>hJPHCzO3B3WjGLg35KUWJCE=
>=1nh0
>-----END PGP SIGNATURE-----
>
>
>---------------------------------------------------------------------
>To unsubscribe, e-mail: m0n0wall dash unsubscribe at lists dot m0n0 dot ch
>For additional commands, e-mail: m0n0wall dash help at lists dot m0n0 dot ch
>

_________________________________________________________________
Play online games with your friends with MSN Messenger 
http://messenger.msn.nl/