LinuxQuestions.org
Welcome to the most active Linux Forum on the web.
Go Back   LinuxQuestions.org > Forums > Linux Forums > Linux - Networking
User Name
Password
Linux - Networking This forum is for any issue related to networks or networking.
Routing, network cards, OSI, etc. Anything is fair game.

Notices

Reply
 
Search this Thread
Old 07-16-2003, 10:00 AM   #1
alansk
LQ Newbie
 
Registered: Jul 2003
Posts: 5

Rep: Reputation: 0
ftp server behind nat


Hi,

I'm trying to setup a publicly accessible ftp server. My linux box is behind a router doing NAT so in order to allow passive as well as active mode i put the following in my vsftpd.conf:

pasv_enable=YES
pasv_min_port=65000
pasv_max_port=65534
pasv_address=<my wan ip here>

and i also set my router to forward that port range.

when i connect to the server from another machine behind my router, all is well; after the PASV command, my server responds with:
"entering passive mode my_wan_ip,255,23" (or two similar numbers that denote a port in the 65000-65534 range)

however, if i try to connect from the other side of the router, my server repsonds to the PASV command with:
"entering passive mode my_wan_ip,117,XX"

Why is my server now advertising a port that is not in the range i specified??

Any help would be most appreciated!

Thanks,
Alan
 
Old 07-16-2003, 03:40 PM   #2
Electro
Guru
 
Registered: Jan 2002
Posts: 6,042

Rep: Reputation: Disabled
Try using DMZ host feature. This setting lets all ports pass through so you need to setup a software firewall in LINUX. Also you need to configure LINUX for a static (fixed) ip address.
 
Old 07-17-2003, 01:31 AM   #3
alansk
LQ Newbie
 
Registered: Jul 2003
Posts: 5

Original Poster
Rep: Reputation: 0
Do you think I can rule out the possibility that the router is fiddling with the packet as it leaves the lan? It just confuses me that it does what i want locally, but goes haywire when it's got to go beyond the box!
 
  


Reply


Thread Tools Search this Thread
Search this Thread:

Advanced Search

Posting Rules
You may not post new threads
You may not post replies
You may not post attachments
You may not edit your posts

BB code is On
Smilies are On
[IMG] code is Off
HTML code is Off


Similar Threads
Thread Thread Starter Forum Replies Last Post
FTP server (Windows) behind NAT (IPtables) SWAT Linux - Newbie 10 01-08-2004 12:54 PM
iptables and passive ftp behind NAT radix Linux - Security 7 10-21-2003 02:06 PM
Can't use ftp nat whhappy Linux - Software 4 08-11-2003 05:33 AM
ftp server behind NAT bax Linux - Networking 6 03-04-2003 09:41 PM
iptables, NAT and FTP cestor Linux - Security 10 01-04-2002 09:57 AM


All times are GMT -5. The time now is 09:18 AM.

Main Menu
My LQ
Write for LQ
LinuxQuestions.org is looking for people interested in writing Editorials, Articles, Reviews, and more. If you'd like to contribute content, let us know.
Main Menu
Syndicate
RSS1  Latest Threads
RSS1  LQ News
Twitter: @linuxquestions
identi.ca: @linuxquestions
Facebook: linuxquestions Google+: linuxquestions
Open Source Consulting | Domain Registration