Re: [Leaf-user] FTP Server - Change default ports

Wed, 12 Dec 2001 11:07:43 -0800 

running a server behind a firewall on a different port requires a setup on
the ftp server:

following settings (for proftpd) are relevant:

Port                            21 - change this to reflect your preferences

MasqueradeAddress               your firewall's ip address or domain name
PassivePorts                    fromport  toport

the last two are needed to make passive mode work (people with firewalls
will like you for doing this). check if your version supports these
directives.

you will have to port-forward your port of choice for the ftp server and the
range of passive ports as well as the ftp-data port (20) to the masqueraded
host. you will have to make sure your firewall accepts connections on these
ports.

how to do this is specific to your distribution / firewall. since i do not
restart often, i just use a little script that does the port forwarding and
have actually forgotten how to configure my router.

ip_masq_ftp is not relevant to the question of running a masqueraded
ftp-server.

i am not sure however what to do with the ftp-data port if 2 or more  ftp
servers run on different ports. i did consult
ftp.echogent.com/docs/FTP_and_Firewalls.pdf (very good reading, btw.)



-----Ursprüngliche Nachricht-----
Von: Simon Bolduc <[EMAIL PROTECTED]>
An: [EMAIL PROTECTED] <[EMAIL PROTECTED]>
Datum: Mittwoch, 12. Dezember 2001 19:31
Betreff: [Leaf-user] FTP Server - Change default ports


>Hey All,
>
>  I'm running an FTP server behind my Dachstein 1.01 router, and rather
than
>have hundreds of scanners hitting my FTP server on port 21 and try and hack
>an account I'd like to move it to a different and much higher port number
>(above 1024 if possible).  I've checked on google but not found anything
>that works.  Most related articles refer to changing the ip_masq_ftp line
to
>read:
>
>ip_masq_ftp ports=port#,port#
>
>this doesn't seem to work - and logging into port 21 still works.  I am
>running Seawall 4.1.1 if that makes any difference.  Any and all help is
>appreciated.
>
>S
>
>
>
>_________________________________________________________________
>Send and receive Hotmail on your mobile device: http://mobile.msn.com
>
>
>_______________________________________________
>Leaf-user mailing list
>[EMAIL PROTECTED]
>https://lists.sourceforge.net/lists/listinfo/leaf-user
>


_______________________________________________
Leaf-user mailing list
[EMAIL PROTECTED]
https://lists.sourceforge.net/lists/listinfo/leaf-user

Reply via email to