Home
Help
Search
Login
Register
OPNsense Forum
»
Archive
»
20.1 Legacy Series
»
DMZ and FTP
« previous
next »
Print
Pages: [
1
]
Author
Topic: DMZ and FTP (Read 2340 times)
mrrodge
Newbie
Posts: 5
Karma: 0
DMZ and FTP
«
on:
February 24, 2020, 06:01:08 pm »
Trying to create a DMZ to put a web server in. I have OPNSense running on a dedicated server in a Hyper-V VM and have configured 3 interfaces; one LAN, one WAN and one DMZ. I've set up block rules to stop traffic crossing from the DMZ to the LAN and vice-versa then added a port forward rule to send all ports/protocols to the web server host in the DMZ.
1) Is my approach right? It seems to work and my DMZ machine can see/be seen from the net.
2) FTP is broken; I get a connection and a log in, but it fails to list the directory. If I put another VM in the DMZ it works so it's definitely OPNSense! It happens with plain FTP and TLS.
Thanks!
Logged
fabian
Hero Member
Posts: 2769
Karma: 200
OPNsense Contributor (Language, VPN, Proxy, etc.)
Re: DMZ and FTP
«
Reply #1 on:
February 24, 2020, 06:21:24 pm »
FTP requires the FTP proxy plug in and plaintext. Otherwise OPNsense cannot forward your traffic to the right machine.
Logged
mrrodge
Newbie
Posts: 5
Karma: 0
Re: DMZ and FTP
«
Reply #2 on:
February 25, 2020, 09:40:38 am »
OK thanks - much appreciated. Will post back if further difficulties!
Logged
bartjsmit
Hero Member
Posts: 2017
Karma: 194
Re: DMZ and FTP
«
Reply #3 on:
February 25, 2020, 10:55:45 am »
Quote from: mrrodge on February 24, 2020, 06:01:08 pm
FTP is broken
This is true in so many ways
Logged
mrrodge
Newbie
Posts: 5
Karma: 0
Re: DMZ and FTP
«
Reply #4 on:
February 25, 2020, 12:51:00 pm »
Works great - thanks!
Logged
Print
Pages: [
1
]
« previous
next »
OPNsense Forum
»
Archive
»
20.1 Legacy Series
»
DMZ and FTP