incoming port forwarding not working 3.3.22
This is a discussion on incoming port forwarding not working 3.3.22 within the IPFilter forums, part of the System Security and Security Related category; Hello, My internal machines can access the internet fine, but I cannot get the incoming port forwarding (ftp/smtp) to ...
|
|||||||
| FAQ | Members List | Calendar | Search | Today's Posts | Mark Forums Read |
07-02-2004
|
|||
|
|||
incoming port forwarding not working 3.3.22
Hello,
My internal machines can access the internet fine, but I cannot get the incoming port forwarding (ftp/smtp) to work. Below are my ipnat and ipf conf files. ------------------------------------- ipnat.conf # Outgoing ftp client active transfers to the internet ##################################### map iprb0 172.16.100.0/24 -> xxx.xxx.xxx.xxx/32 proxy port ftp ftp/tcp ##################################### # Shoehorn translated connections tcp/udp to port range 40000-60000 ##################################### map iprb0 172.16.100.0/24 -> xxx.xxx.xxx.xxx/32 portmap tcp/udp 40000:60000 ##################################### # NAT mapping for all other protocols ##################################### map iprb0 172.16.100.0/24 -> xxx.xxx.xxx.xxx/32 ##################################### ##################################### rdr iprb0 0.0.0.0/0 port 25 -> 172.16.100.125 port 25 ##################################### # ftp ##################################### rdr iprb0 0.0.0.0/0 port 21 -> 172.16.100.125 port 21 ------------------------------------- ipf.conf # iprb0 = external internet interface # iprb1 = internal lan interface #################################### # allow loopback to run free #################################### pass in quick on lo0 all pass out quick on lo0 all #################################### # ftp: #################################### pass in quick on iprb0 proto tcp from any to 172.16.100.125/32 port = 21 flags S keep state #################################### # smtp: #################################### pass in quick on iprb0 proto tcp from any to 172.16.100.125/32 port = 25 flags S keep state keep frags pass out quick on iprb0 proto tcp from 172.16.100.125/32 to any port = 25 flags S keep state keep frags #################################### # pass traffic from lan to internet tcp/udp/icmp #################################### pass in quick on iprb1 proto tcp from 172.16.100.0/24 to any keep state pass in quick on iprb1 proto udp from 172.16.100.0/24 to any keep state pass in quick on iprb1 proto icmp from 172.16.100.0/24 to any keep state pass out quick on iprb0 proto tcp from 172.16.100.0/24 to any keep state pass out quick on iprb0 proto udp from 172.16.100.0/24 to any keep state #################################### # block everything else #################################### block in quick all block out quick all 
|
Linear Mode
