Date: 21 Jan 2005 11:09:22 -0500 From: Lowell Gilbert <freebsd-questions-local@be-well.ilk.org> To: Lucas Holt <luke@foolishgames.com> Cc: FreeBSD Questions <FreeBSD-Questions@FreeBSD.ORG> Subject: Re: ftp/fetch can not connect to ftp sites. Message-ID: <441xcesr0t.fsf@be-well.ilk.org> In-Reply-To: <E6C5DB4A-6A94-11D9-9FF7-000A95EFF4CA@foolishgames.com> References: <E6C5DB4A-6A94-11D9-9FF7-000A95EFF4CA@foolishgames.com>
next in thread | previous in thread | raw e-mail | index | archive | help
Lucas Holt <luke@foolishgames.com> writes: > I am running FreeBSD 5.3 Release p4, upgraded from 5.2.1. Prior to > 5.3 p4, I was able to use command line ftp and fetch to access ftp > sites. Since the upgrade I have not been able to. I can not connect > to ftp.freebsd.org (or mirrors), ftp.x.org, etc. Any port using an > http server works fine using portupgrade, but with about 30 ports to > upgrade its kind of annoying to manually fetch files :) > > I do have ipfw setup and running. It is possible that it is a config > issue with ipfw, but I am doubtful. The kernel does not have inet6 > (ip6) compiled in and occasionally I see the ftp client resolving ip6 > addresses which I find odd. It often does this resolving > ftp.freebsd.org which I think is hosted at ISC. I've tried ipfw > disable firewall and kldunload'ing the ipfw extension in the kernel. > I can connect to ftp sites using firefox in x11 and from Linux & > windows on the same box with the same ip defined. My cable modem > router has this system setup as the dmz. I looked at the fetch man > page and it has an environment variable (man 3 fetch) > FTP_PASSIVE_MODE. I've toggled this to yes and no in the environment > with no effect. > > Also, I happen to have ip_portrange_first and ip_portrange_last set in > /etc/rc.conf to 4000 and 8000 respectively. The system has a custom > built kernel with SMP enabled as I have a dual xeon w/ htt disabled. > > I am at a loss why this is not working. Since I got the cable modem, > I've noticed that pasv mode connections are flaky and i usually have > to switch to port in windows ftp apps especially if the server on the > other end is behind a firewall. I've tried toying with command line > flags to ftp also. Sometimes -4 -A -a will get me into some ftp > servers command line. It sounds like you have a new firewall (intentionally or not) in the form of your cable "modem." Why do you have the portrange set low? The fact that you apparently have similar problems under other operating systems may indicate that FreeBSD can't actually solve this for you. If your cable modem is doing firewalling (or, even more insidious, NAT) without your knowledge, then you will need to understand just how it is configured before you can make any progress at all. -- Lowell Gilbert, embedded/networking software engineer, Boston area http://be-well.ilk.org/~lowell/
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?441xcesr0t.fsf>