On 6/19/05, Abu Khaled <[EMAIL PROTECTED]> wrote:
> On 6/19/05, Robert Usle <[EMAIL PROTECTED]> wrote:
> > Hi,
> >
> > I'm using FreeBSD 5.4 with ipfw (module) & pf (kernel compiled) firewall.
> >
> > pf is used for nat, pass/block, rdr, and dummynet/ipfw is used only
> > for packet queueing.
> >
>
Hi,
You (Axel S. Gruner) wrote:
> Client -> GW -> NAT-Server -> FW -> Internet -> customer
FW = packet filter without NAT?
Does the NAT-Server do some magic to allow actice ftp sessions?
Does ftp active works without pf on the fw box (fw box = router)?
If not maybe here is your problem...
I'll g
Hi,
i got some problems running PF and ftp-proxy.
Client -> GW -> NAT-Server -> FW -> Internet -> customer
So, the "Customer" is doing active FTP, so i add 2 rules on the "NAT-
Server":
rdr on $int_if proto tcp from 10.4.1.26 to any port 21 -> 127.0.0.1
port 8021
pass in on $ext_if inet pr
On 6/19/05, Robert Usle <[EMAIL PROTECTED]> wrote:
> Hi,
>
> I'm using FreeBSD 5.4 with ipfw (module) & pf (kernel compiled) firewall.
>
> pf is used for nat, pass/block, rdr, and dummynet/ipfw is used only
> for packet queueing.
>
> ext_if = vr0
> int_if = rl1
>
> ipfw rules:
> /sbin/ipfw pipe
Hi,
I'm using FreeBSD 5.4 with ipfw (module) & pf (kernel compiled) firewall.
pf is used for nat, pass/block, rdr, and dummynet/ipfw is used only
for packet queueing.
ext_if = vr0
int_if = rl1
ipfw rules:
/sbin/ipfw pipe 10 config bw 256Kbit/s queue 20 mask dst-ip 0x00ff
/sbin/ipfw pipe 11
