From owner-freebsd-security Tue Jun 12 14:59:27 2001 Delivered-To: freebsd-security@freebsd.org Received: from finland.ispro.net.tr (finland.ispro.net.tr [212.174.120.1]) by hub.freebsd.org (Postfix) with ESMTP id 27A5B37B407 for ; Tue, 12 Jun 2001 14:59:05 -0700 (PDT) (envelope-from yurtesen@ispro.net.tr) Received: from localhost (yurtesen@localhost) by finland.ispro.net.tr (8.11.2/8.11.2) with ESMTP id f5CL2nu02089; Wed, 13 Jun 2001 00:02:49 +0300 (EEST) (envelope-from yurtesen@ispro.net.tr) Date: Wed, 13 Jun 2001 00:02:49 +0300 (EEST) From: Evren Yurtesen To: "Antoine Beaupre (LMC)" Cc: "Thomas T. Veldhouse" , Jason DiCioccio , Subject: Re: IPFW almost works now. In-Reply-To: <3B267EDA.9070605@lmc.ericsson.se> Message-ID: MIME-Version: 1.0 Content-Type: TEXT/PLAIN; charset=X-UNKNOWN Content-Transfer-Encoding: QUOTED-PRINTABLE Sender: owner-freebsd-security@FreeBSD.ORG Precedence: bulk List-ID: List-Archive: (Web Archive) List-Help: (List Instructions) List-Subscribe: List-Unsubscribe: X-Loop: FreeBSD.org If you use passive FTP then it shouldnt be needed actually because the client connects to server all the time and the server is in passive mode. so the server doesnt need to connect to the client so voila =3D) On Tue, 12 Jun 2001, Antoine Beaupre (LMC) wrote: > Thomas T. Veldhouse wrote: > > > No you don't. My servers run fine for active and I DON'T allow access = to > > all inbound above 1024. > > > But you do need to allow outbound above 1024, right? > > > > Open up tcp/20 and tcp/21 statefully and you will be rocking and rollin= g. > > > yee-ha. > > > -- > La s=E9mantique est la gravit=E9 de l'abstraction. > > To Unsubscribe: send mail to majordomo@FreeBSD.org > with "unsubscribe freebsd-security" in the body of the message > To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-security" in the body of the message