With FTPD in FreeBSD's base, while relevant to all ftpd servers. I've gotten the IPFW firewall to work with clients which use IPv4. However, my firewall blocks Ethernet clients (in this case an Android with an FTP client ap) which seem to rely only on IPv6, unless, I write the IPv6 address into the Firewall setting.
rc.conf
In
I want to limit which devices are able to use this FTP server on my FreeBSD computer. I also want to be able to use a IPv6 client, without having to drop my firewall, or without having to insert the actual IPv6 address which can change. In short, to use my IPFW firewall with an IPv6 client, which through DHCP may change, through the same alias which IPv4 on my LAN is recognizing.
rc.conf
Then, I'm trying to understand /etc/hosts.allow. My entry is there, to limit in another way. However, I've looked up rc service(8)s, and I didn't find anything that set this file into effect. Does that require a reboot. What I enter, into this file, doesn't seem to have any effect.
hosts.allow
Commented out options may be adjusted later, once I get these settings working correctly. These settings don't seem to be working for me right now. I've made ltld in this case, to mean lan/local-tld.
I understand, that the firewall and hosts.allow only limit access to the computer itself, and it doesn't prevent eavesdroppers for unencrypted data, for ftp destined data which travels or attempts to travel through a LAN.
I also understand that, I can stick with an IPv4 FTP client. However, wouldn't the purpose be to use my FreeBSD settings, to use either IP version with ease, after correctly configuring it?
Alternatively, how can I automatically tie the alias of the smartphone or other client to the dynamically generated IPv6 address? The client alias is tied to IPv4, but not with IPv6.
rc.conf
Code:
firewall_enable="YES"
firewall_type="workstation"
firewall_myservices="21/tcp 35000-65000/tcp"
firewall_allowservices="host-ftpd-on-freebsd.domain.ltld alias-android.lan-domain.ltld android-ipv6-address"allow services, one is my own computer, and two arguments are for the (Android phone) client, which one is the alias and the other is the IPv6 address of that client. The alias takes care of IPv4 clients. However, the IPv6 address needs to be kept in for it to allow connection to a client which uses IPv6. The alias of the non-FreeBSD device is not behaving as the alias for ipv6, which this alias seems to be only attached to the IPv4 address.I want to limit which devices are able to use this FTP server on my FreeBSD computer. I also want to be able to use a IPv6 client, without having to drop my firewall, or without having to insert the actual IPv6 address which can change. In short, to use my IPFW firewall with an IPv6 client, which through DHCP may change, through the same alias which IPv4 on my LAN is recognizing.
rc.conf
Code:
ifconfig_re0="DHCP"
ifconfig_re0_ipv6="inet6 accept_rtadv" # SLAACThen, I'm trying to understand /etc/hosts.allow. My entry is there, to limit in another way. However, I've looked up rc service(8)s, and I didn't find anything that set this file into effect. Does that require a reboot. What I enter, into this file, doesn't seem to have any effect.
hosts.allow
Code:
# ftpd : localhost : allow
# ftpd : host.lan-domain.ltld : allow
ftpd : .lan-domain.ltld : allow
ftpd : ALL : disallowI understand, that the firewall and hosts.allow only limit access to the computer itself, and it doesn't prevent eavesdroppers for unencrypted data, for ftp destined data which travels or attempts to travel through a LAN.
I also understand that, I can stick with an IPv4 FTP client. However, wouldn't the purpose be to use my FreeBSD settings, to use either IP version with ease, after correctly configuring it?
Alternatively, how can I automatically tie the alias of the smartphone or other client to the dynamically generated IPv6 address? The client alias is tied to IPv4, but not with IPv6.