diff options
Diffstat (limited to 'libexec/tftp-proxy/tftp-proxy.8')
| -rw-r--r-- | libexec/tftp-proxy/tftp-proxy.8 | 121 |
1 files changed, 0 insertions, 121 deletions
diff --git a/libexec/tftp-proxy/tftp-proxy.8 b/libexec/tftp-proxy/tftp-proxy.8 deleted file mode 100644 index 0a79653fd1e..00000000000 --- a/libexec/tftp-proxy/tftp-proxy.8 +++ /dev/null @@ -1,121 +0,0 @@ -.\" $OpenBSD: tftp-proxy.8,v 1.7 2011/09/28 13:25:24 jmc Exp $ -.\" -.\" Copyright (c) 2005 joshua stein <jcs@openbsd.org> -.\" -.\" Redistribution and use in source and binary forms, with or without -.\" modification, are permitted provided that the following conditions -.\" are met: -.\" -.\" 1. Redistributions of source code must retain the above copyright -.\" notice, this list of conditions and the following disclaimer. -.\" 2. Redistributions in binary form must reproduce the above copyright -.\" notice, this list of conditions and the following disclaimer in the -.\" documentation and/or other materials provided with the distribution. -.\" 3. The name of the author may not be used to endorse or promote products -.\" derived from this software without specific prior written permission. -.\" -.\" THIS SOFTWARE IS PROVIDED BY THE AUTHOR ``AS IS'' AND ANY EXPRESS OR -.\" IMPLIED WARRANTIES, INCLUDING, BUT NOT LIMITED TO, THE IMPLIED WARRANTIES -.\" OF MERCHANTABILITY AND FITNESS FOR A PARTICULAR PURPOSE ARE DISCLAIMED. -.\" IN NO EVENT SHALL THE AUTHOR BE LIABLE FOR ANY DIRECT, INDIRECT, -.\" INCIDENTAL, SPECIAL, EXEMPLARY, OR CONSEQUENTIAL DAMAGES (INCLUDING, BUT -.\" NOT LIMITED TO, PROCUREMENT OF SUBSTITUTE GOODS OR SERVICES; LOSS OF USE, -.\" DATA, OR PROFITS; OR BUSINESS INTERRUPTION) HOWEVER CAUSED AND ON ANY -.\" THEORY OF LIABILITY, WHETHER IN CONTRACT, STRICT LIABILITY, OR TORT -.\" (INCLUDING NEGLIGENCE OR OTHERWISE) ARISING IN ANY WAY OUT OF THE USE OF -.\" THIS SOFTWARE, EVEN IF ADVISED OF THE POSSIBILITY OF SUCH DAMAGE. -.\" -.Dd $Mdocdate: September 28 2011 $ -.Dt TFTP-PROXY 8 -.Os -.Sh NAME -.Nm tftp-proxy -.Nd Internet Trivial File Transfer Protocol proxy -.Sh SYNOPSIS -.Nm tftp-proxy -.Op Fl v -.Op Fl w Ar transwait -.Sh DESCRIPTION -.Nm -is a proxy for the Internet Trivial File Transfer Protocol invoked by -the -.Xr inetd 8 -internet server. -TFTP connections should be redirected to the proxy using a -.Xr pf 4 -rule using the -.Ar divert-to -option, after which the proxy connects to the server on behalf of -the client. -The connection from the proxy to the server needs to be passed by -a rule with divert-reply set. -.Pp -The proxy inserts -.Xr pf 4 -pass rules using the -.Ar anchor -facility to allow payload packets between the client and the server. -Once the rules are inserted, -.Nm -forwards the initial request from the client to the server to begin the -transfer. -After -.Ar transwait -seconds, the states are assumed to have been established and the -.Xr pf 4 -rules are deleted and the program exits. -Once the transfer between the client and the server is completed the -states will naturally expire. -.Pp -The options are as follows: -.Bl -tag -width Ds -.It Fl v -Log the connection and request information to -.Xr syslogd 8 . -.It Fl w Ar transwait -Number of seconds to wait for the data transmission to begin before -removing the -.Xr pf 4 -rule. -The default is 2 seconds. -.El -.Sh CONFIGURATION -To make use of the proxy, -.Xr pf.conf 5 -needs the following rules. -The anchor is mandatory. -Adjust the rule as needed for your configuration. -.Bd -literal -offset indent -anchor "tftp-proxy/*" -pass in quick on $int_if inet proto udp from $lan to port tftp \e - divert-to 127.0.0.1 port 6969 -pass out quick on $ext_if inet proto udp from $lan to port tftp \e - group proxy divert-reply -.Ed -.Pp -.Xr inetd 8 -must be configured to spawn the proxy on the port that packets are -being forwarded to by -.Xr pf 4 . -An example -.Xr inetd.conf 5 -entry follows: -.Bd -literal -offset indent -127.0.0.1:6969 dgram udp wait root:proxy \e - /usr/libexec/tftp-proxy tftp-proxy -.Ed -.Sh SEE ALSO -.Xr tftp 1 , -.Xr pf 4 , -.Xr pf.conf 5 , -.Xr ftp-proxy 8 , -.Xr inetd 8 , -.Xr syslogd 8 , -.Xr tftpd 8 -.Sh CAVEATS -.Nm -chroots to -.Pa /var/empty -and changes to user -.Dq proxy -to drop privileges. |