Kurt, First of all thanks for the advice/help you gave so far. But I still have some issues...
The problem I have is that I can't get my ftp-forwarding to work. If I use ftp through the browser it works but if I try to use ftp directly it doesn't, not from the NT-machine or from an other linux-box hooked up to my server.
Welcome to the wonderful wacky world of ftp. Passive and active FTP, sounds like the firewalling breaks one,
It is probably "just" a squid problem but I'm not very familiar with squid and need to get this to work. I'm aware that allowing ftp-forwarding is a potential security risk but there is no other way to do this...I think.
I have this exact same setup, I have an NT server with frontpage, I use frontpage to edit my web docs (I'm a truly lazy bastard), but i need to get those docs out to web sites on a regular basis. My solution is to enable ftp on the NT box and have the Linux box synchronize all the ftp files once an hour (you could easily do it more often). From the Linux box I can grab the files via ftp, rsync, etc. If you want "realtime" updates simple install Samba on the Linux box, mount the NT drive with the web docs and then make that available via ftp. This way the NT box is not exposed at all to the outside world, def. a good thing.
I've already using samba, so there I'm o.k. And I guess enabling ftp on the NT-WORKSTATION means getting the passive/active ftp problem fixed. Do you or anyone elso no a "safe" configuration to get squid/SuSE firewall to allow both ftp's. I'm sort of new to linux networking and don't want to open it all up... Dreamweaver uses the ftp that's using port 21. A ftp-proxy can be specified but I don't know if I really need one. I don't allow ftp access to my machine. I only want to allow outgoing ftp.
Please help me out with this. Maurits de Loë
Kurt Seifried SecurityPortal, your focal point for security on the net http://www.securityportal.com/