003 File Manager
Current Path:
/usr/src/contrib/ipfilter/rules
usr
/
src
/
contrib
/
ipfilter
/
rules
/
📁
..
📄
BASIC.NAT
(1.58 KB)
📄
BASIC_1.FW
(3.92 KB)
📄
BASIC_2.FW
(2.51 KB)
📄
example.1
(133 B)
📄
example.10
(431 B)
📄
example.11
(820 B)
📄
example.12
(376 B)
📄
example.13
(468 B)
📄
example.2
(149 B)
📄
example.3
(990 B)
📄
example.4
(66 B)
📄
example.5
(689 B)
📄
example.6
(186 B)
📄
example.7
(362 B)
📄
example.8
(326 B)
📄
example.9
(291 B)
📄
example.sr
(2.04 KB)
📄
firewall
(1.5 KB)
📄
ftp-proxy
(1.24 KB)
📄
ftppxy
(272 B)
📄
ip_rules
(76 B)
📄
ipmon.conf
(685 B)
📄
nat-setup
(2.78 KB)
📄
nat.eg
(596 B)
📄
pool.conf
(161 B)
📄
server
(471 B)
📄
tcpstate
(453 B)
Editing: ftp-proxy
How to setup FTP proxying using the built in proxy code. ======================================================== NOTE: Currently, the built-in FTP proxy is only available for use with NAT (i.e. only if you're already using "map" rules with ipnat). It does support null-NAT mappings, that is, using the proxy without changing the addresses. Lets assume your network diagram looks something like this: [host A] |a ---+-------------+---------- |b [host B] |c ---+-------------+---------- |d [host C] and IP Filter is running on host B. If you want to proxy FTP from A to C then you would do: map int-c ipaddr-a/32 -> ip-addr-c-net/32 proxy port ftp ftp/tcp int-c = name of "interface c" ipaddr-a = ip# of interface a ipaddr-c-net = another ip# on the C-network (usually not the same as the interface). e.g., if host A was 10.1.1.1, host B had two network interfaces ed0 and vx0 which had IP#'s 10.1.1.2 and 203.45.67.89 respectively, and host C was 203.45.67.90, you would do: map vx0 10.1.1.1/32 -> 203.45.67.91/32 proxy port ftp ftp/tcp where: ipaddr-a = 10.1.1.1 int-c = vx0 ipaddr-c-net = 203.45.67.91 The "map" rule for this proxy should precede any other NAT rules you are using.
Upload File
Create Folder