[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: BiNat and ftp-proxy for webhosting on OBSD 3.1 -release



Hello,

(replying to my own post.)

In further testing it seems to be a problem, not with pf and binat but, with
running an ftp server on a non standard port.

It seems to work fine for a ftp server running on the default port 21 with
the client in active mode. Passive mode will not work nor will any mode that
encrypts the command channel.

Problem solved, mostly, by moving ftp to port 21.

Shaun

-----Original Message-----
From: owner-misc_(_at_)_openbsd_(_dot_)_org [mailto:owner-misc_(_at_)_openbsd_(_dot_)_org]On Behalf Of
Shaun Sturby
Sent: Tuesday, October 01, 2002 2:24 PM
To: misc_(_at_)_openbsd_(_dot_)_org
Subject: BiNat and ftp-proxy for webhosting on OBSD 3.1 -release


Hello all,

Here is an interesting challenge to chew on.
Due to the ISP we use for web hosting declaring bankruptcy we had to move
multiple servers last weekend to a new ISP.
<snip>
Q1. Does any one have experience with this scenario that they would like to
share?
Multiple ftp servers behind a BINAT firewall.

I know 3.2 is about to be released and it has a lot of enhancements to pf
so..

Q2. Does this scenario work better in OBSD 3.2?

Thanks in advance for any pointers.

Shaun Sturby, MCSE
Network Specialist
Optrics Inc.
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Optrics Inc. and FundSoft - Canadian Ipswitch Premier Partners
Email: shaun_(_at_)_optrics_(_dot_)_com Website: <http://www.optrics.com>
Snail: Suite 100 4911 - 114 St. Edmonton, AB, Canada, T6H 3L5
Tel:(780) 466-6016 Toll Free: 1-877-386-3763 Fax:(780) 432-5630
Solutions for a Connected World: <http://www.optrics.com/linecard.htm>
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~

___________________________________________________________________________________

IMail Server has scanned this e-mail for viruses using Declude Virus from Optrics.com  



Visit your host, monkey.org