FTP NAT Problem WORKING!!!



  • Link : http://forum.pfsense.org/index.php?topic=13104.0
    Hi,
    I had pretty much the same problem you described so I'll give you a description of my setup. Hopefully this will work for you too.

    1-You'll have to enable the FTP-Proxy userland application for your WAN and LAN interface.

    2-Then create a firewall rule on your LAN interface allowing from any (proto, source ip, source port) to 127.0.0.1 with the "default" gateway (the one named default . Make this rule the very first in your list (this is important!)

    3-Then add a NAT rule for your WAN interface TCP port 21 external address being the "interface address", internal your FTP Server.

    4-Let the script create the firewall rule for you, apply and go to the firewall rules. Copy the automatic NAT FTP Server rule just created and in this copy change the destination address to "WAN Adress". You should habe two rules for Port 21, one in one out.

    This works for my FTP active and passive - in and out.
    I hope it'll help you too.
    Greetz
    –-------------------------------------------------------------------------------
    Bu açıklamaya göre sorunu bende çözmüş bulunmaktayım..
    Kolay Gelsin 8 Ağustos 2010


Log in to reply