Openbsd 6.0 Hello, I have a ftp server behind my PF firewall and I would like to be able to ftp in from the internet It doesn't work with# /usr/sbin/ftp-proxy -D7 -v -R @ftp_internal_address -p21 -b @external_address anchor "ftp-proxy/*" pass in quick on $ext_if inet proto tcp to $ext_add port 21 flags S/SAFR modulate state pass out quick on $int_if inet proto tcp from $int_add to $ftp_internal_address user proxy
But works when I remove the "user proxy" in the last rule pass out quick on $int_if inet proto tcp from $int_add to $ftp_internal_addressThe flow if droppedJan 14 13:08:48.536239 rule 0/(match) block out on int_add: @internal_address.26670 > @ftp_internal_address.21: S 3292161973:3292161973(0) win 16384 <mss 1460,nop,nop,sackOK,nop,wscale 3,nop,nop,timestamp 4289820275[|tcp]> (DF) Does someone knows why ? Thank you
