From owner-freebsd-questions  Fri Dec 28  4:38:16 2001
Delivered-To: freebsd-questions@freebsd.org
Received: from smtp2.mx.pitdc1.stargate.net (smtp2.mx.pitdc1.stargate.net [206.210.69.142])
	by hub.freebsd.org (Postfix) with SMTP id 312F937B416
	for <freebsd-questions@FreeBSD.ORG>; Fri, 28 Dec 2001 04:38:09 -0800 (PST)
Received: (qmail 28103 invoked from network); 28 Dec 2001 12:38:02 -0000
Received: from dap-209-166-135-65.nfas.greensburg-tnt-1.sns234.pa.stargate.net (HELO wastegate.net) (209.166.135.65)
  by smtp2.mx.pitdc1.stargate.net with SMTP; 28 Dec 2001 12:38:02 -0000
Received: (qmail 51726 invoked from network); 28 Dec 2001 12:38:01 -0000
Received: from mother.wg.local (HELO mother.wastegate.net) (192.168.1.2)
  by dap-209-166-135-65.nfas.greensburg-tnt-1.sns234.pa.stargate.net with SMTP; 28 Dec 2001 12:38:01 -0000
From: "Doug Reynolds" <mav@wastegate.net>
To: "darryl@osborne-ind.com" <darryl@osborne-ind.com>,
	"Roger 'Rocky' Vetterberg" <listsub@rambo.simx.org>
Cc: "freebsd-questions@FreeBSD.ORG" <freebsd-questions@FreeBSD.ORG>
Date: Fri, 28 Dec 2001 07:39:27 -0500
Reply-To: "Doug Reynolds" <mav@wastegate.net>
X-Mailer: PMMail 2000 Professional (2.20.2380) For Windows 98 (4.10.2222)
In-Reply-To: <3C2C5819.2080501@rambo.simx.org>
MIME-Version: 1.0
Content-Type: text/plain; charset="us-ascii"
Content-Transfer-Encoding: 7bit
Subject: Re: ftp & FreeBSD firewall
Message-Id: <20011228123809.312F937B416@hub.freebsd.org>
Sender: owner-freebsd-questions@FreeBSD.ORG
Precedence: bulk
List-ID: <freebsd-questions.FreeBSD.ORG>
List-Archive: <http://docs.freebsd.org/mail/> (Web Archive)
List-Help: <mailto:majordomo@FreeBSD.ORG?subject=help> (List Instructions)
List-Subscribe: <mailto:majordomo@FreeBSD.ORG?subject=subscribe%20freebsd-questions>
List-Unsubscribe: <mailto:majordomo@FreeBSD.ORG?subject=unsubscribe%20freebsd-questions>
X-Loop: FreeBSD.ORG

On Fri, 28 Dec 2001 12:31:37 +0100, Roger 'Rocky' Vetterberg wrote:

>Darryl Hoar wrote:
>
>>Greetings,
>>I built a Freebsd firewall according to the instructions at
>>http://www.schlacter.net:8500/public/FreeBSD-STABLE_and_IPFILTER.html
>>
>>The firewall/router is working fine.
>>
>>My network consists mostly of Windows PC's.  Since I've put the firewall
>>in place, they have been unable to use ftp to retrieve files from the web.
>>I have tried cuteftp, ws_ftp and microsofts ftp clients on these windows
>>machines.  I have set them up to use passive , but the firewall settings
>>in these clients don't make sense.
>>
>>What do I need to do to safely let my Windows users use ftp to retrieve/put
>>files on the internet ?
>>
>Trying settting the clients in passive mode.
>Where you find the settings depends on the client software, but its 
>usually reffered to as passive transfers, passive mode or PASV for short.
>I know for a fact that both CuteFTP and WS_FTP supports this option.

i dont know about ws_ftp or msftp, but leapftp you just click pasv.  my
guess is that a rule for your firewall is off..  i think ftp sends data
back on port20 as well.  that could be the problem

---
doug reynolds | the maverick | mav@wastegate.net

PGP Public Key Fingerprint: 6E7B 9993 B503 6D45  E33A 2019 26E5 C1DB



To Unsubscribe: send mail to majordomo@FreeBSD.org
with "unsubscribe freebsd-questions" in the body of the message