From owner-freebsd-questions@FreeBSD.ORG  Mon Oct 13 12:17:20 2008
Return-Path: <owner-freebsd-questions@FreeBSD.ORG>
Delivered-To: freebsd-questions@freebsd.org
Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2001:4f8:fff6::34])
	by hub.freebsd.org (Postfix) with ESMTP id 6C89E1065691
	for <freebsd-questions@freebsd.org>;
	Mon, 13 Oct 2008 12:17:20 +0000 (UTC) (envelope-from rvm@CBORD.com)
Received: from smssmtp.cbord.com (mx1.cbord.com [24.39.174.11])
	by mx1.freebsd.org (Postfix) with ESMTP id 2BB678FC0C
	for <freebsd-questions@freebsd.org>;
	Mon, 13 Oct 2008 12:17:19 +0000 (UTC) (envelope-from rvm@CBORD.com)
X-AuditID: ac1f0165-00000ed400000410-5e-48f33c255b4b
Received: from Email.cbord.com ([10.1.1.100]) by smssmtp.cbord.com with
	Microsoft SMTPSVC(6.0.3790.1830); Mon, 13 Oct 2008 08:16:37 -0400
X-MIMEOLE: Produced By Microsoft Exchange V6.5
Content-class: urn:content-classes:message
MIME-Version: 1.0
Content-Type: text/plain;
	charset="us-ascii"
Content-Transfer-Encoding: quoted-printable
Date: Mon, 13 Oct 2008 08:16:04 -0400
Message-ID: <FF8482A96323694490C194BABEAC24A003601D98@Email.cbord.com>
In-Reply-To: <20081010212304.1bbc9996@gumby.homeunix.com.>
X-MS-Has-Attach: 
X-MS-TNEF-Correlator: 
Thread-Topic: Firewall and FreeBSD ports
Thread-Index: AckrFd6yMvTmUHlQTT6cBeiNiUX59wCFxtwg
References: <110C2D5E-5772-4304-9F90-FDAC5EACAE2E@identry.com><20081010165116.GA37287@icarus.home.lan><20081010185432.6eed9643@gumby.homeunix.com.><20081010184140.GA40049@icarus.home.lan>
	<20081010212304.1bbc9996@gumby.homeunix.com.>
From: "Bob McConnell" <rvm@CBORD.com>
To: <freebsd-questions@freebsd.org>
X-Brightmail-Tracker: AAAAAA==
Subject: RE: Firewall and FreeBSD ports
X-BeenThere: freebsd-questions@freebsd.org
X-Mailman-Version: 2.1.5
Precedence: list
List-Id: User questions <freebsd-questions.freebsd.org>
List-Unsubscribe: <http://lists.freebsd.org/mailman/listinfo/freebsd-questions>, 
	<mailto:freebsd-questions-request@freebsd.org?subject=unsubscribe>
List-Archive: <http://lists.freebsd.org/pipermail/freebsd-questions>
List-Post: <mailto:freebsd-questions@freebsd.org>
List-Help: <mailto:freebsd-questions-request@freebsd.org?subject=help>
List-Subscribe: <http://lists.freebsd.org/mailman/listinfo/freebsd-questions>, 
	<mailto:freebsd-questions-request@freebsd.org?subject=subscribe>
X-List-Received-Date: Mon, 13 Oct 2008 12:17:20 -0000

On Behalf Of RW

> I don't normally do this as Watson is usually less impressed when
> Holmes reveals his working, but the clues were there. He wrote:=20
>=20
>    "install software with ports (i.e, the=20
>    /usr/ports collection.)"
>=20
> and=20
>=20
>    "FTP to grab source files from mirrors"
>=20
> If you combine that with crediting the poster with enough common sense
> to mention he was using a version before 6.2, then it seemed unlikely
> to be a problem with active FTP.=20
>=20
> BTW neither of us actually answered the question. I know I forgot as I
> was in a hurry. I'm pretty sure you didn't either, but I don't have
the
> time to read all of your reply in detail.
>=20
> The answer is: enable outgoing tcp connections to port 21 and to all
> ports above 1023.

Is there a way to set up any firewall so that while there is an active
outgoing connection on port 21, allow any incoming connections from the
same IP address?

Bob McConnell