Hello all.
I want to launch a FTP server on CentOS via vsFTP but how can I use my internet IP? I want to let someone for connect to my server via Internet.

Can I launch it on a local network? I mean is that I have a Gateway and my Linux server use it for connect to the Internet, How can I tell my Linux server for use gateway and let another users from Internet for connect to it?

Cheers.

Almost the exact same question you asked before:
http://www.linuxquestions.org/questi...er-4175489484/

Did you not read/understand those replies? And since you said in another thread that you're a network administrator, you should already know how to perform a NAT on your external IP, and map it to an internal address/port. VERY basic network/firewall administration.

As you see, I never got any reply
I know that I asked this question but never got any reply. If you are here to help, just answer my questions and not track my questions.

Hi Jokar.Mohsen,

Dude you need to login into your router --> your router address would be the gateway on the server (192.168.1.1 or 192.168.0.1 most likely), then forward port 20 and 21 to your linux server from within your router. Once that's done please check if its working as expected i.e. telnet externally to port 21.

That's it your sorted.
Rocky

1 members found this post helpful.

And as you see, you IGNORED the advice you were given, posted the question again, then also ignored the advice given HERE. Pay attention: you are the network manager, if you don't know how to do a simple NAT, then ask one of your co-workers for help.

Setting up FTP, VSFTP, SSH, HTTP, or any OTHER protocol for access from the outside is NO DIFFERENT. You do the forwarding in the router/firewall, and that's it. You've been using Linux for years, and say you're both a systems admin and a network admin...these things should be trivial for you to do.

My Problem is that Gateway is not hardware and is a Windows server, I have not any Experience with it. Windows server use TMG and I don't know it. I guess you just want to mock me but can you claim that you know Linux very well? I have 5 years Experience with Network but I never claim that I'm a Genius or Guru but If you claim, Let me to ask another questions.

Hi. My Gateway is not Hardware and It is Windows server with TMG. I guess that with "route" command in windows OS I can forward request to my sever but in your opinion is it logical and can Linux accept it? If linux accept it then my Network use DHCP and I guess that it was done automatically!!!. My problem is about the security.

Then that makes this a question for the Windows administrator who DOES know that system.
I sure can claim it, because it's true.
Ask anything you want, no one is stopping you...but when you have a JOB working with Linux and networks, you should have the KNOWLEDGE to do the job.
...and this indicates that you really need to talk to your co-workers, and ask your boss for some training.

Linux, or any OTHER OS, doesn't know where a packet comes from over the network...how would Linux not 'accept' something routed to it from a Windows server? The only way would be if you EXPLICITLY told the Linux system to block all incoming traffic from that Windows system. Also, how does DHCP even figure in to this?? Your servers certainly aren't/shouldn't be using DHCP.

And again, as with MANY of your threads, a simple Google search for "Performing NAT with Windows TMG" brings up:
http://technet.microsoft.com/en-us/l.../dd440991.aspx

...complete instructions from Microsoft's own website, that TELLS YOU how to do it. Again, if you want a service visible from your outside address, you NAT it. Again, as a network administrator, you should know what NAT'ting is, and why you use it. It takes an incoming request from one address/port, and 'translates' it into ANOTHER....like your external IP address/port to an INTERNAL server IP address/port.

1 members found this post helpful.

Aside from Tb0nes research, which answers the question quite clearly,. i'd like to offer up that I worked with TMG for two years, and it is important to know this: It is discontinued and not safe to use anymore.

As a Network Admin, you should be sunsetting that device asap, and building up a new proxy, perhaps using something Linux related such as Squid. But remember to learn it first before putting it into production.

1 members found this post helpful.

Agreed, absolutely...and this is one thing I'm confused about. The OP says they're the network admin...but doesn't know about/have rights to the network devices and software? Doesn't know what a NAT is?? Sounds suspicious, to me, especially since the OP ostensibly has more than five years experience with networks and Linux at this point.

I know what is NAT and my TMG have many rules about it. For example we blocked Tor and other Surfing tools and someone are free to use Tor and they are NAT.My question it is not, I want to know how can I tell windows to forward my incoming request to Linux FTP server.
OK, You claim that you know Linux very well, Thus I will back with advanced questions , Be wait.
Please looking at "http://www.linuxquestions.org/questions/debian-26/sound-card-not-worked-properly-4175525662/".

I know what is Squid and worked with it via Opensuse GUI and Webmin but to be honest, Squid is just Proxy server and can't implement TMG features.

If you are trying to allow access to an FTP server behind TMG, I will tell you that there is a bug in TMG regarding this, and since TMG is no longer supported it will never be fixed.

I believe that there are workarounds, but I cannot vouch for their safety.

http://mikehowells.wordpress.com/201...ement-gateway/

http://blogs.technet.com/b/isablog/a...ss-denied.aspx

Squid along with the standard Linux network stack can be configured to do most things that TMG does. However, for a simpler approach there are always Proxy appliances such as barracuda.

The fact still remains that TMG is end of lifed, and is no longer supported - so the web filter lists are no longer maintained.

Hopefully the links in my previous post will help you to set up your FTP forwarding.

Again, this makes NO SENSE AT ALL.

You said before that you don't know TMG...now you say you DO, and know that it has many rules in it. Which is it? And then you say you know what a NAT is, but then ask how to do it for FTP. The answer remains the same as it was the FIRST TIME you asked this question: the SAME WAY YOU DO IT FOR ANY OTHER SERVICE. There is no magic. Forward a port to another port...it makes ABSOLUTELY NO DIFFERENCE what the service is. Do it the same way you did for the other rules. If you are a network administrator, you should know this...but again, it makes no sense that you, as the network administrator, don't have access to a VITAL piece of networking equipment/software.
Not seen any up until this point, and you CONTINUE to ignore very basic instructions. You do NOT provide details, answer questions when asked, or even ACKNOWLEDGE you received advice. Did you not read or understand what was said in the very beginning about NAT? TMG? Did you not see the advice that it's a VERY old system, and should be discarded? Can you not understand or answer the questions that you're asked???
No, because no one wants to pull teeth trying to get you to answer more questions about your system, and AGAIN, you need to read the LQ Rules and Question Guidelines..the link is in my posting signature. Double/cross posting is against the LQ rules.

You were asked questions in that thread, and haven't answered them, which is quite typical.