|
||||||||
What ftp-server are u running? I have ftp-server running behind m0n0 with NAT and its working just fine. In the ftp server I set a custom port-range and forward these ports in m0n0. -----Ursprungligt meddelande----- Från: Nicolas Rainville [mailto:NRainville at pre2post dot com] Skickat: den 9 mars 2004 18:16 Till: m0n0wall at lists dot m0n0 dot ch Ämne: [m0n0wall] FW: Accessing FTP server behind firewall in Bridge mode Hi everyone, We have a M0N0wall as a firewall with a Windows FTP server on the DMZ. The firewall is in Bridge mode, all traffic is allowed from the DMZ to the WAN. The WAN interface has rules set up for the different ports - all works well. Where I have a problem is with FTP. If I open port 21 incoming and 1024-50000 outgoing I can get FTP to work in Passive mode as long as the client connecting to it (from the WAN interface) is not behind a NAT router. Also, this setup forces me to open a lot of ports, disabling a very large part of the security provided by the firewall. I could not get Active mode to work (tried opening port 20) at all. A proxy would probably work here, but as far as I know it is not supported. NAT is not set up on the M0n0wall machine (we have a router doing that work) and we are currently running version pb20r555 built on Mon Nov 24 19:23:59 CET 2003 Any suggestions? Thank you, Nicolas Rainville Pre2Post Inc. --- Incoming mail is certified Virus Free. Checked by AVG anti-virus system (http://www.grisoft.com). Version: 6.0.614 / Virus Database: 393 - Release Date: 2004-03-05 --- Outgoing mail is certified Virus Free. Checked by AVG anti-virus system (http://www.grisoft.com). Version: 6.0.614 / Virus Database: 393 - Release Date: 2004-03-05 |