Setting up a new firewall, OpenBSD is making it easy.
in /etc/pf.macros
ftp_int=$srv01
ftp_ext=$external01
ftp_port=21
in /etc/pf.conf
include "/etc/pf.macros"
...
# NAT/Filter Rules for FTP Server (additon to above)
pass in on egress proto tcp to $ftp_ext port $ftp_port
pass out on internal proto tcp to $ftp_int port $ftp_port user proxy
in /etc/rc.local
. /etc/pf.macros
echo -n ' ftp-proxy (internal)';
/usr/sbin/ftp-proxy -R $ftp_int -p $ftp_port -b $ftp_ext
Thank you! (for that and much more)
l8rZ,
--
andrew - ICQ# 253198 - Jabber: and...@rraz.net
A printer consists of three main parts:
the case, the jammed paper tray and the blinking red light.
