[Firehol-support] FTP NAT ?
Nicolas Repentin
nicolas at shivaserv.fr
Mon Jun 26 21:24:06 BST 2017
Hi all,
I'm trying to create a simple NAT rule for FTP. I don't understand why,
but when I use ftp port, it doesn't work :
my firehol server is 10.9.1.1. My ftp is 192.168.1.200 (reachable from
firehol server). My client is 10.9.1.14.
If I do this :
dnat4 192.168.1.200:21 proto tcp dport 21 inface vpnhome src 10.9.1.14
router4 vpnhome2lan inface vpnhome outface eth0
route "ftp" accept src 10.9.1.14
It doesn't work.
If I replace 21 or ftp by 2121, and change the FTP server port to 2121
it works.
I don't have firewall on FTP server, and the 21 port is not used on
firehol server.
Any idea?
Second problem, when using 2121, I can connect ftp server. But, fail
when trying to list folders.I got an error because 192.168.1.200 is not
reachable... Any idea?
Is it a "best way" to create dnat for ftp ?
Thanks
More information about the Firehol-support
mailing list