From owner-freebsd-questions  Sat Jun  2 19:55:28 2001
Delivered-To: freebsd-questions@freebsd.org
Received: from evilfry.dyndns.org (dyn15ppp140.qala.com.sg [210.193.15.140])
	by hub.freebsd.org (Postfix) with ESMTP id DCA4A37B422
	for <freebsd-questions@freebsd.org>; Sat,  2 Jun 2001 19:55:24 -0700 (PDT)
	(envelope-from root@evilfry.dyndns.org)
Received: by evilfry.dyndns.org (Postfix, from userid 0)
	id 36CF618395B; Sun,  3 Jun 2001 10:58:25 +0800 (SGT)
Content-Type: text/plain;
  charset="iso-8859-1"
From: James Lim <evilfry@sg.freebsd.org>
Reply-To: evilfry@sg.freebsd.org
To: "Thierry Black" <thierryblack@hotmail.com>,
	freebsd-questions@freebsd.org
Subject: Re: FTP and firewall--HELP
Date: Sun, 3 Jun 2001 10:58:21 +0800
X-Mailer: KMail [version 1.2]
References: <F1962m9lHiu3fQtYdVz00001ff6@hotmail.com>
In-Reply-To: <F1962m9lHiu3fQtYdVz00001ff6@hotmail.com>
MIME-Version: 1.0
Message-Id: <01060310582100.56148@evilfry.dyndns.org>
Content-Transfer-Encoding: quoted-printable
Sender: owner-freebsd-questions@FreeBSD.ORG
Precedence: bulk
List-ID: <freebsd-questions.FreeBSD.ORG>
List-Archive: <http://docs.freebsd.org/mail/> (Web Archive)
List-Help: <mailto:majordomo?subject=help> (List Instructions)
List-Subscribe: <mailto:majordomo?subject=subscribe%20freebsd-questions>
List-Unsubscribe: <mailto:majordomo?subject=unsubscribe%20freebsd-questions>
X-Loop: FreeBSD.ORG

Hi Thierry,

=09I am not soo sure about the stockk ftp client. But i use pureftpd, whi=
ch=20
helps me specify the port range that would be used for passive transfer m=
ode=20
( if clients enable ) i would then use the port range in my firewall rule=
s as=20
well



On Sunday 03 June 2001 08:27, Thierry Black wrote:
> help please kind people! :)
>
> I need to set up a FTP serever, no virtual hosts, no anon, just user
> accounts. User accounts need to be chrooted (/etc/ftpchroot works fine)=
=2E
> For those requirements, the stock daemon works fine, but I can't firewa=
ll
> the freaking thing to save my life.
>
> But without opening virtually all ports 1024 and up, how can I effectiv=
ely
> use FTP in a firewall? I seem to be able to get connections to work, bu=
t
> any PASSIVE transfers fail due to blocked ports. Disabling the firewall
> corrects the problem. Non-passive transfers also work, but too many cli=
ents
> enable passive mode by default.
> _______________________________________________________________________=
__
> Get Your Private, Free E-mail from MSN Hotmail at http://www.hotmail.co=
m.
>
>
> To Unsubscribe: send mail to majordomo@FreeBSD.org
> with "unsubscribe freebsd-questions" in the body of the message

--=20
Regards,
James Lim
http://sg.freebsd.org | http://www.bsd-geeks.org

To Unsubscribe: send mail to majordomo@FreeBSD.org
with "unsubscribe freebsd-questions" in the body of the message