From owner-freebsd-questions@FreeBSD.ORG Sun Jul 15 20:12:38 2012 Return-Path: Delivered-To: freebsd-questions@freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [69.147.83.52]) by hub.freebsd.org (Postfix) with ESMTP id 4177E1065674 for ; Sun, 15 Jul 2012 20:12:38 +0000 (UTC) (envelope-from mrkvrg@acm.org) Received: from xena.bway.net (xena.bway.net [216.220.96.26]) by mx1.freebsd.org (Postfix) with ESMTP id CFDB98FC1A for ; Sun, 15 Jul 2012 20:12:37 +0000 (UTC) Received: (qmail 63543 invoked by uid 0); 15 Jul 2012 20:05:56 -0000 Received: from smtp.bway.net (216.220.96.25) by xena.bway.net with ESMTPS (DHE-RSA-AES256-SHA encrypted); 15 Jul 2012 20:05:56 -0000 Received: (qmail 63539 invoked by uid 90); 15 Jul 2012 20:05:56 -0000 Received: from unknown (HELO gecko3.bs.net) (216.220.115.209) by smtp.bway.net with ESMTPS (DHE-RSA-AES256-SHA encrypted); 15 Jul 2012 20:05:56 -0000 From: mrkvrg To: freebsd-questions@freebsd.org Date: Sun, 15 Jul 2012 16:05:54 -0400 User-Agent: KMail/1.13.5 (FreeBSD/8.2-RELEASE-p1; KDE/4.5.5; i386; ; ) References: In-Reply-To: MIME-Version: 1.0 Content-Type: Text/Plain; charset="us-ascii" Content-Transfer-Encoding: quoted-printable Message-Id: <201207151605.54759.mrkvrg@acm.org> Subject: Re: Is there a way to run FreeBSD ports through port 80? X-BeenThere: freebsd-questions@freebsd.org X-Mailman-Version: 2.1.5 Precedence: list Reply-To: mrkvrg@acm.org List-Id: User questions List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Sun, 15 Jul 2012 20:12:38 -0000 Hello All, I have a similar problem with passive ftp due to a self-imposed=20 restrictive firewall. When "make fetch" is run on a port and ftp data=20 is required, the PF firewall stops the program from completing. I got=20 around this problem by restarting the firewall with a separate set of=20 rules that opened up more ports needed for passive ftp. After the fetch=20 operation I would then restart PF with the more restrictive rules. This=20 sequence works but is a pain to maintain and also opens up a large=20 number of ports during ftp operations. I would like to have a setup in=20 which I do not have to restart my firewall every time I need to use=20 passive ftp. =46rom past experience setting MASTER_SORT to http works for those ports=20 that use http but obviously has not worked for those ports that ONLY use=20 ftp. I tried to use ftp-proxy but as far as I'm able to ascertain it will not=20 work on my simple home office setup. It is a single client connected to=20 the internet via a router: host <--> router <--> adsl modem <--> ISP. Any help to resolve this will be greatly appreciated. Cheers ... Mark On Thursday, 12 July 2012 12:23:29 Kaya Saman wrote: > Hi, >=20 > I am trying to introduce FreeBSD into my office and it's been looked > at with quite a bit of enthusiasm however, what makes it look bad is > our companies 'security' policy to block FTP. >=20 > At present they are running a whole bunch of CentOS based boxes and > VM's which of course can be run through port 80 when using YUM. >=20 >=20 > How does one get round this issue as my superiors are telling me that > opening up FTP is a security risk and therefor don't want to proceed? >=20 >=20 > I would like to use ports specifically and not the pkg_add tool to > get software. >=20 >=20 > Can anyone sugget anything? >=20 >=20 > Regards, >=20 >=20 > Kaya > _______________________________________________ > freebsd-questions@freebsd.org mailing list > http://lists.freebsd.org/mailman/listinfo/freebsd-questions > To unsubscribe, send any mail to > "freebsd-questions-unsubscribe@freebsd.org"