From owner-freebsd-questions@FreeBSD.ORG Fri Mar 2 01:49:32 2007 Return-Path: X-Original-To: freebsd-questions@freebsd.org Delivered-To: freebsd-questions@freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [69.147.83.52]) by hub.freebsd.org (Postfix) with ESMTP id EC32916A402 for ; Fri, 2 Mar 2007 01:49:32 +0000 (UTC) (envelope-from kdgrills@the-grills.com) Received: from sccrmhc14.comcast.net (sccrmhc14.comcast.net [63.240.77.84]) by mx1.freebsd.org (Postfix) with ESMTP id AFA7813C46B for ; Fri, 2 Mar 2007 01:49:32 +0000 (UTC) (envelope-from kdgrills@the-grills.com) Received: from srv2.the-grills.com (failure[68.60.243.64]) by comcast.net (sccrmhc14) with SMTP id <2007030201493101400prqmce>; Fri, 2 Mar 2007 01:49:31 +0000 Received: (qmail 48689 invoked by uid 1001); 2 Mar 2007 01:49:21 -0000 Date: Thu, 1 Mar 2007 19:49:21 -0600 From: "Kelly D. Grills" To: freebsd-questions@freebsd.org Message-ID: <20070302014921.GA48654@the-grills.com> Mail-Followup-To: freebsd-questions@freebsd.org References: <6207f7d90703010553t745460aap9cdc3f8a03ffaf69@mail.gmail.com> <45E6DBB0.9050603@hier7.com> <6207f7d90703011310m2ffe7740i25c01aa748a79ae9@mail.gmail.com> MIME-Version: 1.0 Content-Type: multipart/signed; micalg=pgp-sha1; protocol="application/pgp-signature"; boundary="d6Gm4EdcadzBjdND" Content-Disposition: inline In-Reply-To: <6207f7d90703011310m2ffe7740i25c01aa748a79ae9@mail.gmail.com> X-Operating-System: FreeBSD/6.2-RELEASE (i386) X-PGP-Key: mailto:kdgrills-pgpkey@the-grills.com User-Agent: Mutt/1.5.13 (2006-08-11) Subject: Re: Fwd: IPF (ftp - pkg_add) help requested X-BeenThere: freebsd-questions@freebsd.org X-Mailman-Version: 2.1.5 Precedence: list List-Id: User questions List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Fri, 02 Mar 2007 01:49:33 -0000 --d6Gm4EdcadzBjdND Content-Type: text/plain; charset=us-ascii Content-Disposition: inline Content-Transfer-Encoding: quoted-printable On Thu, Mar 01, 2007 at 04:10:11PM -0500, Don Munyak wrote: >=20 > My server was opening an additional session using ports > 1024, which > I was not initially allowing. ipf was blocking outbound due to this > rule. This is a known issue with ftp client sessions using active mode > when behind a firewall. >=20 As I hinted at in my original response, If you'd rather keep your firewall rules tighter, pkg_add(1) says: Note: If you wish to use passive mode ftp in such transfers, set the variable FTP_PASSIVE_MODE to some value in your environment. Otherwise, the more standard ACTIVE mode may be used. If pkg_add consistently fails to fetch a package from a site known to work, it may be because you have a firewall that demands the usage of passive mode ftp. --=20 Kelly D. Grills kdgrills@the-grills.com --d6Gm4EdcadzBjdND Content-Type: application/pgp-signature Content-Disposition: inline -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.4.6 (FreeBSD) Comment: PGP key: mailto:kdgrills-pgpkey@the-grills.com iD8DBQFF54Kh7inS5LzF7HMRAiC+AJ4hfYUA5R2o00EDjXIQcOW5bSIGxgCfaWLV PRVxp4J26WJ05znW4xhiKJA= =VyOl -----END PGP SIGNATURE----- --d6Gm4EdcadzBjdND--