Re: pf FTP ftp-proxy rules question for a firewall
- From: "none" <mikem891@xxxxxxxxxxx>
- Date: 30 Mar 2006 15:29:55 -0800
I just want to add that the line:
pass out quick on $ext_if inet proto tcp \
from $ext_if port > 49151 to any \
flags S/SA modulate state
Is not working for what I want to do, I just noticed
that it gives access for all other services to the FTP
allowed host. For exemple I can connect my POP3
server even if no POP3 rules is set. Opening the
49151 ports and up automatically give access to
everything (from the inside) which is not good.
I'm trying to figure out how I could configure FTP
and still be able to control what goes out of the
firewall (to the internet).
Thanks
.
- References:
- Prev by Date: Re: Lost ASDL connection
- Next by Date: Re: "No disks found"
- Previous by thread: pf FTP ftp-proxy rules question for a firewall
- Index(es):
