proftpd + pasv
Hi,
I have set up a proftpd on Debian 3.1 (Stable, apt-getted it.), and i have removed the anonymous part of the stock proftpd.conf, put in a "MasqueradeAddress ftp.mydomain.com", a "DefaultRoot ~" and a "PassivePorts 49152 65534". I run Bastille-firewall (apt-getted) and I force passive in it. My 3com router above the server has a DMZ to it. Even with my Bastille-firewall disabled, my friend connecting can still only connect using a "Server behind router/nat" setting in his client, ie: not pasv. Can anyone tell me what I missed here? I am also running a secure-interface script on bootup, i can post those settings if anyone figures it may have something to do with it.
Thanks in advance.
|