Hello,
I have a serious problem with the FTP server.
Basically my connection is:
From my local lan i can go to the FTP server, but from outside of my network i cannot
On /etc/sysctl.conf i have:
This is a very small fragment of my pf.conf:
If anyone could help me with the insane FTP would be greatly appreciated.
I have a serious problem with the FTP server.
Basically my connection is:
Code:
Public ip Firewall -> Public Ip FTP SERVER (DMZ)
|
|
Local Lan Private ip
From my local lan i can go to the FTP server, but from outside of my network i cannot
On /etc/sysctl.conf i have:
Code:
net.inet.ip.portrange.first=32768
net.inet.ip.portrange.last=49151
net.inet.ip.portrange.hifirst=49152
net.inet.ip.portrange.hilast=65535
This is a very small fragment of my pf.conf:
Code:
tcp_services = "{www, smtp, domain, pop3, auth, https, pop3s, ftp, ftp-data, 1863, 5000, 5050, 5100, 5222, ssh, 2703, 465, 587}"
tcp_wan1 = "{auth, www, domain, pop3, https, pop3s, 5000, 465, 10000, 587, 993 }"
block in log all
antispoof quick for {$if_int $if_ext}
# Firewall -> Any (Outgoing).
#pass out quick proto tcp from any to any flags S/SAFR keep state
pass out quick from any to any keep state
FTP = my ftp server
pass in quick on $if_ext proto tcp from any to $FTP port $tcp_wan1 flags S/SAFR keep state
pass in quick on $if_ext proto tcp from any to $FTP port 21 flags S/SAFR keep state
pass in quick on $if_ext proto tcp from any to $FTP port > 32768 flags S/SAFR keep state
pass in quick on $if_pub proto tcp from any to any port $tcp_services flags S/SAFR keep state
If anyone could help me with the insane FTP would be greatly appreciated.