From owner-freebsd-questions Thu May 11 15:12:56 2000 Delivered-To: freebsd-questions@freebsd.org Received: from hobbes.ssbaptist.net (linux.ssbaptist.net [216.17.141.70]) by hub.freebsd.org (Postfix) with ESMTP id 3EA1037BC17 for ; Thu, 11 May 2000 15:12:52 -0700 (PDT) (envelope-from brad@ssbaptist.net) Received: from ssbaptist.net (waite.ssbaptist.net [192.168.1.132]) by hobbes.ssbaptist.net (8.9.3/8.8.7) with ESMTP id JAA13007; Thu, 11 May 2000 09:16:35 -0600 Message-ID: <391B2EB8.EA93EE8D@ssbaptist.net> Date: Thu, 11 May 2000 16:05:44 -0600 From: Brad Waite Organization: South Sheridan Baptist Church X-Mailer: Mozilla 4.73 [en] (Windows NT 5.0; U) X-Accept-Language: en MIME-Version: 1.0 To: Steffen Vorrix Cc: freebsd-questions@FreeBSD.ORG Subject: Re: Firewall Problem. References: <000901bfbb8f$22bea4a0$fd03a8c0@ws028> <391B277B.231CFA01@ssbaptist.net> <006101bfbb93$31ce6620$fd03a8c0@ws028> Content-Type: text/plain; charset=us-ascii Content-Transfer-Encoding: 7bit Sender: owner-freebsd-questions@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.ORG Steffen, Your login info is transmitted over the control line. When you issue a command that requires output or try to GET a file, the ftp server opens a socket back to the client, after the two have negotiated which ports they'll use. If it's not dns-related, I'm thinking that it might have to do with the necessity of accepting connections to the client on high TCP ports. -Brad Steffen Vorrix wrote: > > Brad... > > Just for grins, I tried that... I keep forgetting to post all the things > that I have tried... :) I created entried for both client side and server > side firewalls in the respective hosts file. When looking at the headers > with tcpdump, I could see that the host information did infact come from the > hosts file with the information that I added. But it still hung AFTER I > logged in, which got me thinking... If it were timing out, it should do it > before I ever log in, right? I shoulnd't even be able to connect, right? > > Steffen > > ----- Original Message ----- > From: "Brad Waite" > To: "Steffen Vorrix" > Sent: Thursday, May 11, 2000 5:34 PM > Subject: Re: Firewall Problem. > > > Steffen, > > > > I think you've hit the nail on the head. I'm guessing that your ftp > > server is timing out trying to lookup the name for Server 2's IP when it > > opens the FTP data connection to the Client. I don't know if adding an > > entry in your client's /etc/hosts would work, but if it doesn't add the > > entry to your dns servers and see how it goes. > > > > Steffen Vorrix wrote: > > > > > > Oh yeah, I forgot to mention. The 205.198.90.x address has a reverse > DNS > > > entry, but the 205.198.90.x+1 does not. Would this be causing any of > the > > > problems? > > > > > > To Unsubscribe: send mail to majordomo@FreeBSD.org > > > with "unsubscribe freebsd-questions" in the body of the message > > > > -- > > Brad Waite > > Media Director - South Sheridan Baptist Church > > (303) 922-8304 x225 brad@ssbaptist.net > > -- Brad Waite Media Director - South Sheridan Baptist Church (303) 922-8304 x225 brad@ssbaptist.net To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-questions" in the body of the message