[FUG-BR] script ipfw para ftp server (proftpd)

Sexta Agosto 18 18:15:43 BRT 2006

Pessoal,

Estou tentando configurar um web+ftp server, mas quando tento logar e
listar no ftp aparece esse erro:

ncftp / > ls
Data connection timed out.
Falling back to PORT instead of PASV mode.
List failed.

Eis meu ipfw script, ele esta correto?

ipfw -f flush

lib_ftp="192xxxxxxxx"
lib_ssh1="192xxxxxxxxx"

ipfw add 00002 deny tcp from any to any ipoptions ssrr,lsrr,rr
ipfw add 00003 deny ip from not me to any via rl0 out

ipfw add 00004 deny tcp from any to me tcpflags syn,fin
ipfw add 00005 deny tcp from any to me tcpflags syn,rst

ipfw add 00009 pass tcp from any to any established
ipfw add 00010 pass tcp from me to any setup

ipfw add 00009 pass ip from 127.0.0.1 to 127.0.0.1 via lo0
ipfw add 00011 pass ip from me to me via lo0
ipfw add 00012 pass icmp from any to me
ipfw add 00014 pass icmp from me to any

ipfw add 00026 pass tcp from ${lib_ssh1} to me 22 setup

ipfw add 00044 pass tcp from any to any 123 setup
ipfw add 00045 pass tcp from any to me 80

ipfw add 00049 pass tcp from ${lib_ftp} to me 1024-30000 keep-state setup
ipfw add 00047 pass tcp from ${lib_ftp} to me 20 keep-state setup
ipfw add 00048 pass tcp from ${lib_ftp} to me 21 keep-state setup

ipfw add 00077 pass tcp from any to me 8080
ipfw add 00078 pass tcp from any to me 8005

ipfw add 00079 pass udp from me to any 53
ipfw add 00080 pass udp from any 53 to me

ipfw add 00085 deny all from any to any

-- 
Edu