Date: Fri, 15 Jun 2001 08:37:32 +0200 From: "Marcel Dijk" <nascar24@home.nl> To: "Crist Clark" <crist.clark@globalstar.com>, "Peter Pentchev" <roam@orbitel.bg> Cc: "Igor Roshchin" <str@giganda.komkon.org>, <freebsd-security@FreeBSD.ORG> Subject: Re: IPFW almost works now -> stateful rules Message-ID: <04c901c0f565$a8588750$0900a8c0@windows> References: <046b01c0f4e8$a32a9200$0900a8c0@windows> <200106141559.LAA90429@giganda.komkon.org> <20010614194556.A729@ringworld.oblivion.bg> <3B28EBA0.42917E22@globalstar.com>
next in thread | previous in thread | raw e-mail | index | archive | help
> > On Thu, Jun 14, 2001 at 11:59:28AM -0400, Igor Roshchin wrote: > > > > > > > > > If those rules are all rules you have, > > > and I didn't miss any line, > > > no ftp would be allowed to go through, since > > > there is no rule for the port 21. > > > Aren't you mixing something ? ftp is at port 21. > > > Port 22 is ssh. > > > (Check /etc/services) > > > > > > However, I am puzzled, how do you manage to establish the initial connect > > > at all. > > > > This has been discussed before: his FTP server is listening on a high port. > > But his tcpdump(8) output indicates the 'ftp' port is being used... > I hope he didn't edit /etc/services (yee-uck). Yes I did, I commented the original line out and typed in a new one with my own port. Marcel To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-security" in the body of the message
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?04c901c0f565$a8588750$0900a8c0>