On Tue, Dec 29, 2009 at 8:51 AM, Andrew Fresh <and...@afresh1.com> wrote: > Setting up a new firewall, OpenBSD is making it easy. > > in /etc/pf.macros > ftp_int=$srv01 > ftp_ext=$external01 > ftp_port=21 > > in /etc/pf.conf > include "/etc/pf.macros" > ... > # NAT/Filter Rules for FTP Server (additon to above) > pass in on egress proto tcp to $ftp_ext port $ftp_port > pass out on internal proto tcp to $ftp_int port $ftp_port user proxy > > in /etc/rc.local > . /etc/pf.macros > echo -n ' ftp-proxy (internal)'; > /usr/sbin/ftp-proxy -R $ftp_int -p $ftp_port -b $ftp_ext > > Thank you! (for that and much more) > > l8rZ, > -- > andrew - ICQ# 253198 - Jabber: and...@rraz.net > > A printer consists of three main parts: > the case, the jammed paper tray and the blinking red light. > >
Hang on... isn't ftp_proxy defined in rc.conf? # cat /etc/rc.conf <snip> hotplugd_flags=NO # for normal use: "" watchdogd_flags=NO # for normal use: "" ftpproxy_flags=NO # for normal use: "" hostapd_flags=NO # for normal use: "" ifstated_flags=NO # for normal use: "" relayd_flags=NO # for normal use: "" <snip> # -- Aaron Mason - Programmer, open source addict I've taken my software vows - for beta or for worse
