From owner-freebsd-questions@FreeBSD.ORG  Thu Feb 17 00:35:14 2005
Return-Path: <owner-freebsd-questions@FreeBSD.ORG>
Delivered-To: freebsd-questions@freebsd.org
Received: from mx1.FreeBSD.org (mx1.freebsd.org [216.136.204.125])
	by hub.freebsd.org (Postfix) with ESMTP id 717CB16A4CE
	for <freebsd-questions@freebsd.org>;
	Thu, 17 Feb 2005 00:35:14 +0000 (GMT)
Received: from szamoca.krvarr.bc.ca (s142-179-111-232.bc.hsia.telus.net
	[142.179.111.232])
	by mx1.FreeBSD.org (Postfix) with ESMTP id EB81843D4C
	for <freebsd-questions@freebsd.org>;
	Thu, 17 Feb 2005 00:35:11 +0000 (GMT)
	(envelope-from sandy@krvarr.bc.ca)
Received: from szamoca.krvarr.bc.ca (localhost [127.0.0.1])
	by szamoca.krvarr.bc.ca (8.13.1/8.12.11) with ESMTP id j1H0Z1KZ013315;
	Wed, 16 Feb 2005 16:35:01 -0800 (PST)
	(envelope-from sandy@szamoca.krvarr.bc.ca)
Received: (from sandy@localhost)
	by szamoca.krvarr.bc.ca (8.13.1/8.12.11/Submit) id j1H0Z1f4013312;
	Wed, 16 Feb 2005 16:35:01 -0800 (PST)
	(envelope-from sandy)
From: Sandy Rutherford <sandy@krvarr.bc.ca>
MIME-Version: 1.0
Content-Type: text/plain; charset=us-ascii
Content-Transfer-Encoding: 7bit
Message-ID: <16915.59058.155411.11446@szamoca.krvarr.bc.ca>
Date: Wed, 16 Feb 2005 16:34:58 -0800
To: Erik Norgaard <norgaard@locolomo.org>
In-Reply-To: <420F83A8.8050200@locolomo.org>
References: <20050213143319.0fe50e3f.dick@nagual.st>
	<420F6831.8030203@locolomo.org>
	<20050213165233.129f68b2.dick@nagual.st>
	<420F83A8.8050200@locolomo.org>
X-Mailer: VM 7.07 under Emacs 21.3.1
X-krvarr.bc.ca-MailScanner-Information: Please contact postmaster@krvarr.bc.ca
	for more information.
X-krvarr.bc.ca-MailScanner: Not scanned: please contact
	postmaster@krvarr.bc.ca for details.
X-krvarr.bc.ca-MailScanner-From: sandy@szamoca.krvarr.bc.ca
cc: freebsd-questions@freebsd.org
Subject: Re: ipfilter outgoing
X-BeenThere: freebsd-questions@freebsd.org
X-Mailman-Version: 2.1.1
Precedence: list
List-Id: User questions <freebsd-questions.freebsd.org>
List-Unsubscribe: <http://lists.freebsd.org/mailman/listinfo/freebsd-questions>,
	<mailto:freebsd-questions-request@freebsd.org?subject=unsubscribe>
List-Archive: <http://lists.freebsd.org/pipermail/freebsd-questions>
List-Post: <mailto:freebsd-questions@freebsd.org>
List-Help: <mailto:freebsd-questions-request@freebsd.org?subject=help>
List-Subscribe: <http://lists.freebsd.org/mailman/listinfo/freebsd-questions>,
	<mailto:freebsd-questions-request@freebsd.org?subject=subscribe>
X-List-Received-Date: Thu, 17 Feb 2005 00:35:14 -0000

>>>>> On Sun, 13 Feb 2005 17:43:20 +0100, 
>>>>> Erik Norgaard <norgaard@locolomo.org> said:

 > dick hoogendijk wrote:
 >> I have configures pure-ftpd to use a restrict set op known ports to the
 >> outside.
 >> I also openen up 5999 already.
 >> 
 >> Most problems I encounter are for streaming media. This is blocked most
 >> of the time. Are these random ports or always the same?

 > Dunno, I think they are, but it is badly documented as these are 
 > proprietary protocols. google port numbers, some lists are more 
 > extensive than /etc/services

You can also put some log statements into your firewall rules to
figure out what you are blocking that you really would like to pass.

Sandy