Hi,
I'm trying to set up ftp-proxy on my OpenBSD 3.9 box. I'm using the following
configuration:
pf.conf:
rdr pass proto tcp from any to any port 21 -> 127.0.0.1 port 8021
block log (all) all
pass proto tcp from any to 127.16.218.129 to 127.0.0.1 port 8021 flags S/SA
keep state
network:
* A bridge (bridge0) of 3 interfaces.
* Only one network (172.16/12) set on the first interface of the bridge (first
brconfig add).
* Every interfaces are LEARNING and DISCOVER (as well as UP and RUNNING :).
* Loopback lo0 inteface is left to its default: 127.0.0.1/8, UP, LOOPBACK and
RUNNING.
When 172.16.218.129 is trying to reach the port 21/tcp of 129.128.5.191,
here is what happen:
* tcpdump -tei pflog0 port 21 or 8021: don't show anything
* tcpdump -tni bridge0 port 21 or 8021: just show the SYN coming from
172.16.218.129,
nothing else.
* pfctl -ss show 2 states:
all tcp 127.0.0.1:8021 <- 129.128.5.191:21 <- 172.16.218.129:22585
CLOSED:SYN_SENT
all tcp 172.16.218.129:22585 -> 127.0.0.1:8021 SYN_SENT:CLOSED
* netstat -anp tcp show that ftp-proxy is listening on 127.0.0.1:8021 but don't
receive anything (no socket in a state !=LISTEN with port 8021).
Is there something I'm missing? What is the exact meaning of the arrows seen in
the
pfctl -ss output?
thx,
sheda
Accidez au courrier ilectronique de La Poste : www.laposte.net ;
3615 LAPOSTENET (0,34 /mn) ; til : 08 92 68 13 50 (0,34/mn)
