Date: Mon, 4 Feb 2002 11:50:51 -0800 (PST) From: Thomas Cannon <tcannon@noops.org> To: Drew Tomlinson <drew@mykitchentable.net> Cc: <questions@freebsd.org> Subject: Re: Active FTP Through Firewall? Message-ID: <20020204114451.P42857-100000@stereophonic.noops.org> In-Reply-To: <00b901c1ada2$4d304200$c42a6ba5@lc.ca.gov>
next in thread | previous in thread | raw e-mail | index | archive | help
Not an answer, per se, but an option. And not even a very good one. You might try installing an FTP proxy on your machine running ipfw... that is, if your anti-virus program allows that to be configured. If it won't let you choose passive mode FTP, it probably doesn't. That's pretty weak. Cheers, Thomas On Mon, 4 Feb 2002, Drew Tomlinson wrote: > I'm using ipfw on 4.5-Release. I have created a rule set based on the > rc.firewall.current script found at > http://www.bsdtoday.com/2000/December/Features359.html and have been > using it successfully for several months. Passive FTP transfers > initiated from the inside will work through the firewall just fine. > However, active transfers do not. I'd like to get active transfers > working so that my backup software can update its virus protection data > files without my intervention. Is there a rule I can add to open port > 20 when I initiate a FTP transfer? I have seen the punch_fw option in > natd but I am not using natd (NAT is handled by my DSL modem/router). > I've searched Google but have not found a definitive answer although I > suspect I can not do what I want. Can anyone confirm or deny my > suspicions? > > Thanks, > > Drew > > > To Unsubscribe: send mail to majordomo@FreeBSD.org > with "unsubscribe freebsd-questions" in the body of the message > To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-questions" in the body of the message
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?20020204114451.P42857-100000>