From owner-freebsd-questions Fri Jul 5 7:22: 2 2002 Delivered-To: freebsd-questions@freebsd.org Received: from mx1.FreeBSD.org (mx1.FreeBSD.org [216.136.204.125]) by hub.freebsd.org (Postfix) with ESMTP id 891B437B400 for ; Fri, 5 Jul 2002 07:22:00 -0700 (PDT) Received: from tonnant.cnchost.com (tonnant.concentric.net [207.155.248.72]) by mx1.FreeBSD.org (Postfix) with ESMTP id 3B9A343E3B for ; Fri, 5 Jul 2002 07:22:00 -0700 (PDT) (envelope-from raja@micronetusa.com) Received: from win98 ([208.176.51.227]) by tonnant.cnchost.com id KAA24271; Fri, 5 Jul 2002 10:21:59 -0400 (EDT) [ConcentricHost SMTP Relay 1.14] From: "Raja Velu" To: , "'Dan Nelson'" Cc: Subject: RE: Browser-based FTP access as part of a web page - SOLVED Date: Fri, 5 Jul 2002 09:18:52 -0500 Message-ID: <001501c2242e$e37b4f40$1d00a8c0@www.micronetusa.com> MIME-Version: 1.0 Content-Type: text/plain; charset="iso-8859-1" Content-Transfer-Encoding: 7bit X-Priority: 3 (Normal) X-MSMail-Priority: Normal X-Mailer: Microsoft Outlook CWS, Build 9.0.2416 (9.0.2911.0) In-Reply-To: <20020701185505.GA8295@dan.emsphone.com> X-MimeOLE: Produced By Microsoft MimeOLE V5.50.4807.1700 Importance: Normal Sender: owner-freebsd-questions@FreeBSD.ORG Precedence: bulk List-ID: List-Archive: (Web Archive) List-Help: (List Instructions) List-Subscribe: List-Unsubscribe: X-Loop: FreeBSD.ORG > In the last episode (Jul 01), Raja Velu said: > > The FTP URL actually points to the BSD Server's IP > (1.2.3.4) - not to > > the Windows 2000 server. So, I have not setup any forwarding rules > > for that. I am failing to understand why, all of a sudden, there is > > request for communication from the web browser to an arbitrary port > > on the BSD server (please see the last lines on either of my logs > > above). > > That's probably the data connection for the result of the "LIST" > command. With passive mode FTP, both the control and data connections > are initiated by the client. With active FTP, the server initiates > data connections back to the client. I couldn't tell you why Explorer > decides to use passive mode on pages with frames and active otherwise, > though. > > Active FTP breaks servers behind simple packet filters, Passive FTP > breaks clients behind simple packet filters :) For this discussion, > ipfw is a simple packet filter; natd is not. You may need to open > ports 49152-65535 to allow for passive incoming connections. > > -- > Dan Nelson Thanks for the opening up the possibility of passive FTP. I have now opened up ports 49152-65535 on my IPFW rule set and everything is going on fine. Rgds, Raja To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-questions" in the body of the message