Help:
I trying to run proftp from behind my firewall/router. If I DMZ the
Linksys firewall and run a local linux firewall (shorewall in this
case), it works fine.
But..... what I really want to do is configure the router/firewall to
pass the ftp traffic and not have to run a local linux firewall. So,
I opened up port 21 on the firewall and forwarded it to my linux
computer. I could login but not issue commands.
At first I got the following error for ls:
500 Illegal PORT command
ftp: bind: Address already in use
Chatter on the internet indicated that this maybe a port access error
for ftp's passive mode (which makes sense), so I added the following
line to proftd.conf
PassivePorts xxxx-yyyy
And also configured the firewall to forward these ports.
This obviously was a problem. but unfortunately not the only problem, as
I then got this error:
425 Unable to build data connection: No route to host
This the internet indicated that I needed to add the following directive
to the proftpd.conf file:
AllowForeignAddress on
BUT ... once again this didn't solve the problem! I now get this error
for an ls:
425 Unable to build data connection: No route to host
Does anyone have configuration like this working? I could easily
go back to the DMZ/shorewall configuration, but I'm stubborn and would
like to know why I can't get THIS configuration working!
Greg Broten
Received on Fri Feb 22 20:12:28 2008
This archive was generated by hypermail 2.1.8 : Fri Feb 22 2008 - 20:12:32 CST