[Prev][Next][Index][Thread]

Proxy of ftp



Dear Friends,

We are working on a FreeBSD 2.0.5 system with CERN HTTPD 3.0 using proxies 
and caching. De caching works perfect, and all protocols are proxied when 
our users use Netscape as client. But when using WS_FTP, the proxie of 
FTP doesn't seem to work.  I send some excerpts of configuration files, 
hoping someone can tell us why it doesn't work.

Regards,
Daniel Verhoeven

**Exerpt of httpd.conf

ServerRoot			/usr/local/www  
HostName			www.knooppunt.be
ServerType			StandAlone
Port				80
PidFile				/var/WWW/httpd-pid
UserId				nobody
GroupId				users
Enable				HEAD POST
#Disable			{all others}
IdentityCheck		        On	
DNSLookup			On
Welcome			        index.html
AlwaysWelcome			On
UserDir				public_html
#MetaDir			{.web}
#MetaSuffix			.htm
#MaxContentLengthBuffer		{50 K}

#
# *** URL TRANSLATION RULES ***
#

#Redirect			/some_url/*			http://some_server/some_url/*
#DefProt		<url_template>		<setup_file>		[<uid>.<gid>]
#Protect		[<url_template>		<setup_file>		[<uid>.<gid>]
Exec			/htbin/*			/usr/local/www/htbin/*
Exec			/cgi-bin/*			/usr/local/www/cgi-bin/*

#
# *** FILENAME SUFFIX DEFINITIONS ***
#

#AddType			<.suffix>			<representation>		<encoding>	[<quality>]
#AddEncoding			<.suffix>			<encoding>
#AddLanguage			<.suffix>			<encoding>
#SuffixCaseSense		{Off}

#
# *** ACCESSORY SCRIPTS ***
#

#Search				<search_script_pathname>
#Post-Script			<post_handler_pathname>
#Put-Script			<put_handler_pathname>
#Delete-Script			<delete_handler_pathname>

#
# *** DIRECTORY LISTINGS ***
#

DirAccess			Selective
DirReadme			Top
FTPDirInfo			Top
DirShowIcons			On
#DirShowBrackets		{On}
#DirShowMinLength		{15}
#DirShowMaxLength		{25}
DirShowDate			On
DirShowSize			On
DirShowBytes		        On	
#DirShowHidden			{Off}
DirShowOwner		        On	
DirShowGroup		        On	
DirShowMode			On
DirShowDescription		On
DirShowHTMLTitles		On
#DirShowMaxDescrLength		{25}
#DirShowCase			{Off}

#
# *** DIRECTORY ICONS ***
#

#AddIcon			<icon_url>			<alt_text>			<url_template>
#AddBlankIcon			<icon_url>			<alt_text>			<url_template>
#AddUnknownIcon			<icon_url>			<alt_text>			<url_template>
#AddDirIcon			<icon_url>			<alt_text>			<url_template>
#AddParentIcon			<icon_url>			<alt_text>			<url_template>

#
# *** LOGGING ***
# (relative to ServerRoot if doesn's start with slash)
#

AccessLog			/var/log/http.log
ProxyAccessLog			/var/log/proxy.log
CacheAccessLog			/var/log/http_cache.log
ErrorLog			/var/log/http.error
LogFormat			Common
LogTime				LocalTime
#NoLog				<url_template>

#
# *** TIMEOUTS ***
#

#InputTimeOut			{2 mins}
#OutputTimeOut			{20 mins}
#ScriptTimeOut			{5 mins}

#
# *** PROXY CACHING ***
#

Caching			        On
CacheRoot			/var/www.cache         
CacheSize			100 M
NoCaching 			http://www.knooppunt.be/*
CacheClean		        * 3 months	
CacheUnused			* 30 days 
CacheLastModifiedFactor		* 0.20
CacheTimeMargin			1 hour	
GcDailyGc			03:00
CacheLockTimeOut		30 mins	

Map				file:* ftp:*

Pass				ftp:*
Pass				gopher:*
Pass 				http:*
Pass				news:*
Pass				wais:*

Pass				/*				/home/WWW/*

No_Proxy 			kick.knooppunt.be


** Exerpt of inetd.conf

#
# Internet server configuration database
#
#	@(#)inetd.conf	5.4 (Berkeley) 6/30/90
#
ftp	stream	tcp	nowait	root	/usr/libexec/ftpd	ftpd -l -i
telnet	stream	tcp	nowait	root	/usr/libexec/telnetd	telnetd
shell	stream	tcp	nowait	root	/usr/libexec/rshd	rshd
login	stream	tcp	nowait	root	/usr/libexec/rlogind	rlogind
#exec	stream	tcp	nowait	root	/usr/libexec/rexecd	rexecd
uucpd	stream	tcp	nowait	root	/usr/libexec/uucpd	uucpd
#nntp	stream	tcp	nowait	usenet	/usr/libexec/nntpd	nntpd
finger	stream	tcp	nowait	nobody	/usr/libexec/fingerd	fingerd -s
#tftp	dgram	udp	wait	nobody	/usr/libexec/tftpd	tftpd
comsat	dgram	udp	wait	root	/usr/libexec/comsat	comsat
#talk	dgram	udp	wait	root	/usr/old/talkd		talkd
ntalk	dgram	udp	wait	root	/usr/libexec/ntalkd	ntalkd
#ident	stream	tcp	wait	root	/usr/local/sbin/in.identd in.identd -w -t120
echo	stream	tcp	nowait	root	internal
discard	stream	tcp	nowait	root	internal
chargen	stream	tcp	nowait	root	internal
daytime	stream	tcp	nowait	root	internal
time	stream	tcp	nowait	root	internal
#echo	dgram	udp	wait	root	internal
discard	dgram	udp	wait	root	internal
#chargen	dgram	udp	wait	root	internal
#daytime	dgram	udp	wait	root	internal
#time	dgram	udp	wait	root	internal
# Kerberos authenticated services
klogin	stream	tcp	nowait	root	/usr/libexec/rlogind	rlogind -k
eklogin	stream	tcp	nowait	root	/usr/libexec/rlogind	rlogind -k -x
kshell	stream	tcp	nowait	root	/usr/libexec/rshd	rshd -k
# Services run ONLY on the Kerberos server
# Neither of these work in FreeBSD 1.x.
#krbupdate stream tcp	nowait	root	/usr/libexec/registerd	registerd
#kpasswd	stream	tcp	nowait	root	/usr/libexec/kpasswdd	kpasswdd
#
# RPC based services
#  You MUST have portmapper running to use these!
#rstatd/1-3	dgram	rpc/udp	wait	root	/usr/libexec/rpc.rstatd	rpc.rstatd
#rusersd/1-2	dgram	rpc/udp	wait	root	/usr/libexec/rpc.rusersd	rpc.rusersd
#walld/1	dgram	rpc/udp	wait	root	/usr/libexec/rpc.rwalld	rpc.rwalld
pcnfsd/1-2	dgram	rpc/udp	wait	root	/usr/libexec/rpc.pcnfsd	rpc.pcnfsd	
#
# example entry for the pop3 server
pop3	stream	tcp	nowait	root	/usr/local/libexec/popper	popper
#


** exerpts of services

#
# Network services, Internet style
#
# Note that it is presently the policy of IANA to assign a single well-known
# port number for both TCP and UDP; hence, most entries here have two entries
# even if the protocol doesn't support UDP operations.
# Updated from RFC 1700, ``Assigned Numbers'' (October 1994).  All ports
# are included.
# Kerberos services are for Kerberos v4, and are unofficial.  Sites running
# v5 should uncomment v5 entries and comment v4 entries.
#
#	services,v 1.11 1995/04/09 03:02:08 ache Exp
#	From: @(#)services	5.8 (Berkeley) 5/9/91
#
# WELL KNOWN PORT NUMBERS
#
tcpmux		  1/tcp	   #TCP Port Service Multiplexer
tcpmux		  1/udp	   #TCP Port Service Multiplexer
compressnet	  2/tcp	   #Management Utility
compressnet	  2/udp	   #Management Utility
compressnet	  3/tcp	   #Compression Process
compressnet	  3/udp	   #Compression Process
rje		  5/tcp	   #Remote Job Entry
rje		  5/udp	   #Remote Job Entry
echo		  7/tcp
echo		  7/udp
discard		  9/tcp	   sink null
discard		  9/udp	   sink null
systat		 11/tcp	   users	#Active Users
systat		 11/udp	   users	#Active Users
daytime		 13/tcp
daytime		 13/udp
qotd		 17/tcp	   quote	#Quote of the Day
qotd		 17/udp	   quote	#Quote of the Day
msp		 18/tcp	   #Message Send Protocol
msp		 18/udp	   #Message Send Protocol
chargen		 19/tcp	   ttytst source	#Character Generator
chargen		 19/udp	   ttytst source	#Character Generator
ftp-data	 20/tcp	   #File Transfer [Default Data]
ftp-data	 20/udp	   #File Transfer [Default Data]
ftp		 21/tcp	   #File Transfer [Control]
ftp		 21/udp	   #File Transfer [Control]
telnet		 23/tcp
telnet		 23/udp
#		 24/tcp	   any private mail system
#		 24/udp	   any private mail system
smtp		 25/tcp	   mail		#Simple Mail Transfer
smtp		 25/udp	   mail		#Simple Mail Transfer
nsw-fe		 27/tcp	   #NSW User System FE
nsw-fe		 27/udp	   #NSW User System FE
msg-icp		 29/tcp	   #MSG ICP
msg-icp		 29/udp	   #MSG ICP
msg-auth	 31/tcp	   #MSG Authentication
msg-auth	 31/udp	   #MSG Authentication
dsp		 33/tcp	   #Display Support Protocol
dsp		 33/udp	   #Display Support Protocol
#		 35/tcp	   any private printer server
#		 35/udp	   any private printer server
time		 37/tcp	   timserver
time		 37/udp	   timserver
rap		 38/tcp	   #Route Access Protocol
rap		 38/udp	   #Route Access Protocol
rlp		 39/tcp	   resource	#Resource Location Protocol
rlp		 39/udp	   resource	#Resource Location Protocol
graphics	 41/tcp
graphics	 41/udp
nameserver	 42/tcp	   name		#Host Name Server
nameserver	 42/udp	   name		#Host Name Server
nicname		 43/tcp	   whois
nicname		 43/udp	   whois
mpm-flags	 44/tcp	   #MPM FLAGS Protocol
mpm-flags	 44/udp	   #MPM FLAGS Protocol
mpm		 45/tcp	   #Message Processing Module [recv]
mpm		 45/udp	   #Message Processing Module [recv]
mpm-snd		 46/tcp	   #MPM [default send]
mpm-snd		 46/udp	   #MPM [default send]
ni-ftp		 47/tcp	   #NI FTP
ni-ftp		 47/udp	   #NI FTP
auditd		 48/tcp	   #Digital Audit Daemon
auditd		 48/udp	   #Digital Audit Daemon
#login		  49/tcp    #Login Host	Protocol
#login		  49/udp    #Login Host	Protocol
re-mail-ck	 50/tcp	   #Remote Mail Checking Protocol
re-mail-ck	 50/udp	   #Remote Mail Checking Protocol
la-maint	 51/tcp	   #IMP Logical Address Maintenance
la-maint	 51/udp	   #IMP Logical Address Maintenance
xns-time	 52/tcp	   #XNS Time Protocol
xns-time	 52/udp	   #XNS Time Protocol
domain		 53/tcp	   #Domain Name Server
domain		 53/udp	   #Domain Name Server
xns-ch		 54/tcp	   #XNS Clearinghouse
xns-ch		 54/udp	   #XNS Clearinghouse
isi-gl		 55/tcp	   #ISI Graphics Language
isi-gl		 55/udp	   #ISI Graphics Language
xns-auth	 56/tcp	   #XNS Authentication
xns-auth	 56/udp	   #XNS Authentication
mtp		 57/tcp	   # deprecated
#PROBLEMS!==============================================================
#		 57/tcp	   any private terminal access
#PROBLEMS!==============================================================
#		 57/udp	   any private terminal access
xns-mail	 58/tcp	   #XNS Mail
xns-mail	 58/udp	   #XNS Mail
#		 59/tcp	   any private file service
#		 59/udp	   any private file service
ni-mail		 61/tcp	   #NI MAIL
ni-mail		 61/udp	   #NI MAIL
acas		 62/tcp	   #ACA Services
acas		 62/udp	   #ACA Services
whois++		 63/tcp
whois++		 63/udp
covia		 64/tcp	   #Communications Integrator (CI)
covia		 64/udp	   #Communications Integrator (CI)
tacacs-ds	 65/tcp	   #TACACS-Database Service
tacacs-ds	 65/udp	   #TACACS-Database Service
sql*net		 66/tcp	   #Oracle SQL*NET
sql*net		 66/udp	   #Oracle SQL*NET
bootps		 67/tcp	   #Bootstrap Protocol Server
bootps		 67/udp	   #Bootstrap Protocol Server
bootpc		 68/tcp	   #Bootstrap Protocol Client
bootpc		 68/udp	   #Bootstrap Protocol Client
#tftp		 69/tcp	   #Trivial File Transfer
#tftp		 69/udp	   #Trivial File Transfer
gopher		 70/tcp
gopher		 70/udp
netrjs-1	 71/tcp	   #Remote Job Service
netrjs-1	 71/udp	   #Remote Job Service
netrjs-2	 72/tcp	   #Remote Job Service
netrjs-2	 72/udp	   #Remote Job Service
netrjs-3	 73/tcp	   #Remote Job Service
netrjs-3	 73/udp	   #Remote Job Service
netrjs-4	 74/tcp	   #Remote Job Service
netrjs-4	 74/udp	   #Remote Job Service
#		 75/tcp	   any private dial out service
#		 75/udp	   any private dial out service
deos		 76/tcp	   #Distributed External Object Store
deos		 76/udp	   #Distributed External Object Store
netrjs		 77/tcp
#PROBLEMS!==============================================================
#		 77/tcp	   any private RJE service
#PROBLEMS!==============================================================
#		 77/udp	   any private RJE service
vettcp		 78/tcp
vettcp		 78/udp
finger		 79/tcp
finger		 79/udp
http		 80/tcp	   www www-http		#World Wide Web HTTP
http		 80/udp	   www www-http		#World Wide Web HTTP


Follow-Ups: