On Mon, Mar 08, 2010 at 10:36:46AM +0100, Mattieu Baptiste wrote: > Hi all, > > I have a public FTP server accessible through redirections on my > firewall via ftp-proxy (my server has a private IPv4 address on a > local subnet). > I d'like to make it accessible through my IPv6 connectivity (gif > tunnel with hurricane electric). With this IPv6 connectivity, all my > servers have public addresses. But I can't find a way to do it with > ftp-proxy which seems to support my setup. > > In my pf.conf I have: > > anchor "ftp-proxy/*" > pass in log quick on gif0 inet6 proto tcp to port ftp rdr-to ::1 port 8121 > > Then I start the IPv6 instance of ftp-proxy with: > > /usr/sbin/ftp-proxy -6 -p 8121 > > I tried to start ftp-proxy with "-vv -D 7" but I haven't any output > (with the IPv4 instance of ftp-proxy I can see the ftp connection). > Nothing happens. It seems the redirection in my pf.conf isn't > happening. On the other hand, with the "log" keyword on this rule, the > rule correctly matches since I can see it on pflog0... > > Any Ideas ? >
Local IPv6 redirects do not work at least not to ::1. This is a bu^Wfeature in netinet6. It seems none of our IPv6 users care to much to fix it (or they're equaly scared of the code). -- :wq Claudio