Hi, On Fri, Sep 29, 2000 at 09:22:38AM +0200, Steven Thompson wrote:
Hi All
Is the SuSE FTP-Proxy used mainly for inbound connections, as it warns you that if do not specify a destination FTP-Server the FTP-Proxy service will fail.
Yes, it is mainly used to proxy incoming FTP connections to one or more FTP servers you maintain.
<Quote> /etc/proxy-suite/ftp-proxy.conf # Where to redirect incoming FTP traffic. This destination # will be used if a client has not set its own target. # WARNING: ftp-proxy will refuse to run if this directive # is not set. # # DestinationAddress server.domain.tld<Quote>
Question 2
Are you able to set the "DestinationAddress" to a FTP Server sitting on a private network address. For example your DMZ was a private network i.e. 192.168.x.x
Yes.
Question 3
Is it possible to setup the FTP-Proxy for outbound connections only or is IP-Masquerade safe enough for outbound ftp connections.
use a proxy like for example `squid' for FTP downloads, use the SuSE FTP proxy for uploads, use the `magic host' mechanism wisely if you have to. As for `safe enough': you have to decide that for your own environment. Best regards, Till.
Thanks in advance
Steven
--------------------------------------------------------------------- To unsubscribe, e-mail: suse-security-unsubscribe@suse.com For additional commands, e-mail: suse-security-help@suse.com
-- Till Franke SuSE Linux Solutions AG Tel: 07 11 / 72 72 54-0 Geschäftsstelle Südwest Fax: 07 11 / 72 60 89 0 Zettachring 8 mailto:Till.Franke@suse.de 70567 Stuttgart