From owner-freebsd-questions@FreeBSD.ORG Fri Oct 10 20:23:08 2008 Return-Path: Delivered-To: freebsd-questions@freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2001:4f8:fff6::34]) by hub.freebsd.org (Postfix) with ESMTP id BA6231065688 for ; Fri, 10 Oct 2008 20:23:08 +0000 (UTC) (envelope-from fbsd06+2S=d302466b@mlists.homeunix.com) Received: from mxout-08.mxes.net (mxout-08.mxes.net [216.86.168.183]) by mx1.freebsd.org (Postfix) with ESMTP id 9740E8FC13 for ; Fri, 10 Oct 2008 20:23:08 +0000 (UTC) (envelope-from fbsd06+2S=d302466b@mlists.homeunix.com) Received: from gumby.homeunix.com. (unknown [87.81.140.128]) (using TLSv1 with cipher DHE-RSA-AES256-SHA (256/256 bits)) (No client certificate requested) by smtp.mxes.net (Postfix) with ESMTP id 345A7D04FF for ; Fri, 10 Oct 2008 16:23:06 -0400 (EDT) Date: Fri, 10 Oct 2008 21:23:04 +0100 From: RW To: freebsd-questions@freebsd.org Message-ID: <20081010212304.1bbc9996@gumby.homeunix.com.> In-Reply-To: <20081010184140.GA40049@icarus.home.lan> References: <110C2D5E-5772-4304-9F90-FDAC5EACAE2E@identry.com> <20081010165116.GA37287@icarus.home.lan> <20081010185432.6eed9643@gumby.homeunix.com.> <20081010184140.GA40049@icarus.home.lan> X-Mailer: Claws Mail 3.5.0 (GTK+ 2.12.11; i386-portbld-freebsd7.0) Mime-Version: 1.0 Content-Type: text/plain; charset=US-ASCII Content-Transfer-Encoding: 7bit Subject: Re: Firewall and FreeBSD ports X-BeenThere: freebsd-questions@freebsd.org X-Mailman-Version: 2.1.5 Precedence: list List-Id: User questions List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Fri, 10 Oct 2008 20:23:08 -0000 On Fri, 10 Oct 2008 11:41:40 -0700 Jeremy Chadwick wrote: > On Fri, Oct 10, 2008 at 06:54:32PM +0100, RW wrote: > > On Fri, 10 Oct 2008 09:51:16 -0700 > > Jeremy Chadwick wrote: > > passive ftp has been the default for long time, fetch is called > > with the -p option. > > Let's give the users some actual detail, not terse one-liners which > will induce more questions/confusion. < Snip some facts used as a blunt instrument > > The OP did not disclose how he was installing ports. A lot of users > think that packages == ports, I don't normally do this as Watson is usually less impressed when Holmes reveals his working, but the clues were there. He wrote: "install software with ports (i.e, the /usr/ports collection.)" and "FTP to grab source files from mirrors" If you combine that with crediting the poster with enough common sense to mention he was using a version before 6.2, then it seemed unlikely to be a problem with active FTP. BTW neither of us actually answered the question. I know I forgot as I was in a hurry. I'm pretty sure you didn't either, but I don't have the time to read all of your reply in detail. The answer is: enable outgoing tcp connections to port 21 and to all ports above 1023.