Date: Mon, 9 Dec 2002 16:16:40 -0500 From: "Peter Brezny" <peter@skyrunner.net> To: <freebsd-net@freebsd.org> Subject: passive mode ftp server, need stateful ipfw rule. Message-ID: <NEBBIGLHNDFEJMMIEGOOAELGFEAA.peter@skyrunner.net>
next in thread | raw e-mail | index | archive | help
Is it possible to create an ipfw ruleset for an ftp server in passive mode that figures out which random port the ftp server is going to open to only allow the client that initiated the connection to connect to that port? Since the client initiates it's data connection from a random port to the new random data port on the passive mode server, i've so far not been able to come up with decent firewall rules to protect this type of system. TIA, Peter Brezny Skyrunner.net To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-net" in the body of the message
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?NEBBIGLHNDFEJMMIEGOOAELGFEAA.peter>