Hi,
I am running a FTP Server (proftpd) behind the Firewall.
1) FTP Server
IP: 192.168.1.22
Port: 21
MasqueradAdress set to: external IP
Passive Port Range: 50000 to 51000
(for none ProFTPD users: this sets the FTP Server to use the external IP instead of the local IP for passiv transfer. Also only Ports between 50000 and 51000 will be used for passive transfer)
---
2) Firewall
NAT/Masquerading FTP Any -> eth1_Interface__ / FTP None FTP_Server
Paket Filter Rules
Any FTP FTP_Server Allow
---
3) I read in the FAQ (or better: I understood the FAQ in this way), that I do not have to set any more settings, because Astaro will recognize the passive Ports by his own.
3) Live Filter Log
16:24:54 213.152.yy.xx 63075 -> 213.152.zz.zzz 50465 TCP SYN
16:24:57 213.152.yy.xx 63075 -> 213.152.zz.zzz 50465 TCP SYN
16:25:03 213.152.yy.xx 63075 ->
213.152.zz.zzz 50465 TCP SYN
---
So, Astaro is dropping the packets and no passive transfer is possible.. Any idea ?
cu
stonki
This thread was automatically locked due to age.
