[ previous ] [ next ] [ threads ]
 
 From:  "Scott Kuhn" <scotters at gmail dot com>
 To:  <m0n0wall at lists dot m0n0 dot ch>
 Subject:  RE: FTP server behind monowall
 Date:  Sat, 9 Sep 2006 22:05:49 -0700 
Joseph...when you attempted connection externally, have you verified from
the logs that it is getting to the m0n0wall?  Port 21 is one that many
broadband ISPs have blocked, just as port 80 is. But then all you have to do
is change port numbers!

 
-----Original Message-----
From: Joseph Lo [mailto:josephlo71 at yahoo dot com] 
Sent: Saturday, September 09, 2006 4:34 AM
To: m0n0wall at lists dot m0n0 dot ch
Subject: FTP server behind monowall

Dear All,

I know this is an age old question: how to setup ftp server behind monowall.

I have searched the forum and read the monowall scratchpad. But I still
can't get my ftp server to work. I am hoping someone could enlighten me.

Here is my setup.

internet ----> monowall ----> switch ----> ftp server

monowall is 192.168.1.1
ftp server is 192.168.1.2. I am using FileZilla on windows XP as some have
suggested.

Here are my monowall config

Firewall NAT Inbound
lf            proto     Ext. port range        NAT IP        Int. port range
Description
WAN    TCP            20                            192.168.1.2
20                ftp server port 20
WAN    TCP            21                           192.168.1.2            21
ftp server port 21
WAN    TCP        55000-61000            192.168.1.2    55000-61000    ftp
server


Firewall NAT outbound
Interface        source                Destination        Target
Description
WAN        192.168.1.0/24            *                        192.168.1.2
ftp server


Firewall rules
Proto        Source            Port        Destination        Port
Destination
TCP            *                       *           192.168.1.2        21
FTP server 1
TCP            *                        *            192.168.1.2
55000-61000        FTP server 2

I have setup filezilla with passive mode settings External server IP address
for passive mode transfer -> use the following IP -> 192.168.1.2

I have also checked the tick box
* Don't use external IP for local connections
* use custom port range: 55000 - 61000

When I use ftp client to connect to 192.168.1.2 it work. When I use ftp
client from external lan to connect to my dynamic IP, it can't find the ftp
server. by the way, I am using monowall's dyndns server. Pinging my hostname
(eg. hostname.homeunix.net) from the net work. 

I have use Shield-up to check and it report that port 21 is open.

I have tried many configuration and still can't get anything to work. 

Please help

Thank  you.
Joseph


 				
---------------------------------
Get your own web address for just $1.99/1st yr. We'll help. Yahoo! Small
Business.
 		
---------------------------------
How low will we go? Check out Yahoo! Messenger's low  PC-to-Phone call
rates.