From owner-freebsd-questions Fri Feb 22 8:27:55 2002 Delivered-To: freebsd-questions@freebsd.org Received: from field.videotron.net (field.videotron.net [205.151.222.108]) by hub.freebsd.org (Postfix) with ESMTP id 25B3B37B402 for ; Fri, 22 Feb 2002 08:27:53 -0800 (PST) Received: from windows ([24.201.83.93]) by field.videotron.net (Sun Internet Mail Server sims.3.5.1999.12.14.10.29.p8) with ESMTP id <0GRY000FW0EBBD@field.videotron.net> for freebsd-questions@FreeBSD.ORG; Fri, 22 Feb 2002 11:27:47 -0500 (EST) Date: Fri, 22 Feb 2002 11:28:46 -0500 From: Sandro Mancuso Subject: Firewall stuff To: freebsd-questions@FreeBSD.ORG Message-id: <000501c1bbbe$008151e0$6400a8c0@windows> MIME-version: 1.0 X-Mailer: Microsoft Outlook, Build 10.0.2616 Content-type: text/plain; charset=us-ascii Content-transfer-encoding: quoted-printable Importance: Normal X-MSMail-Priority: Normal X-MimeOLE: Produced By Microsoft MimeOLE V6.00.2600.0000 X-Priority: 3 (Normal) Sender: owner-freebsd-questions@FreeBSD.ORG Precedence: bulk List-ID: List-Archive: (Web Archive) List-Help: (List Instructions) List-Subscribe: List-Unsubscribe: X-Loop: FreeBSD.ORG Hi guys, stupid question I think, as it relates to a windows feature put to use in FreeBSD, but I beg you not to bite my head off for this ;-) Once upon a time, I was using pcconseal firewall (its too bad its not around like it used to be, it was a pretty good windows firewall program). What I remember about it was that it used to "know" what programs were opening the ports in question. Now I'm setting up a firewall on a gateway for my LAN. This sort of characteristic would be a great help, imho (of course I have more limited knowledge in UNIX), for properly allowing passive ftp transfers through. I'm messing with IPFilter at the moment, I'm wondering if there's a way, in FreeBSD for it (or any other firewalls?) to know what service is opening a port, so that it may be opened only for a particular service. Or is that something that should be defined within the ftpd itself (I'm not talking about setting a specific portrange for passive transfers... a little more than just that... making sure that only ftpd can use say ports 15000-19000 outbound) Thanks in advance... Sandro To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-questions" in the body of the message