Text only | Text with Images

OPNsense Forum

English Forums => General Discussion => Topic started by: dvjstefan on October 04, 2022, 06:53:05 PM

Title: Passive FTP ports
Post by: dvjstefan on October 04, 2022, 06:53:05 PM
I have been trying to get ftp to work behind my firewall, it seems to be impossible for me.

Port 21 - connection is no problem, the problem is the passive ports. I'm getting error all the time.

What is the correct solution to make it work with passive ports, so i can transfer files.

I have put the server in [LAN] network.
Title: Re: Passive FTP ports
Post by: Patrick M. Hausen on October 04, 2022, 07:44:24 PM
Use the os-ftp-proxy plugin:
https://forum.opnsense.org/index.php?topic=4669.0
Title: Re: Passive FTP ports
Post by: dvjstefan on October 04, 2022, 07:48:31 PM
Thanks, but it's not an option because TLS dosen't work with it.

Why dosen't it work if you "only" open some ports in the firewall like other firewall does, what kind of limit is this?
Title: Re: Passive FTP ports
Post by: i81b4u on October 04, 2022, 08:51:33 PM
If I may I would recommend some light reading. Perhaps the following article can get you on the right track?

https://www.jscape.com/blog/setting-up-an-ftps-server-behind-a-firewall-or-nat-for-pasv-mode-data-transfers (https://www.jscape.com/blog/setting-up-an-ftps-server-behind-a-firewall-or-nat-for-pasv-mode-data-transfers)

Best regards.
Text only | Text with Images