From owner-freebsd-questions Mon Jul 1 13: 9:46 2002 Delivered-To: freebsd-questions@freebsd.org Received: from mx1.FreeBSD.org (mx1.FreeBSD.org [216.136.204.125]) by hub.freebsd.org (Postfix) with ESMTP id E0CA237B400 for ; Mon, 1 Jul 2002 13:09:42 -0700 (PDT) Received: from pdxpo.dsl-only.net (pdxpo.dsl-only.net [63.105.16.3]) by mx1.FreeBSD.org (Postfix) with ESMTP id B301143E31 for ; Mon, 1 Jul 2002 13:09:41 -0700 (PDT) (envelope-from ryan@wonko.com) Received: from lucifer.wonko.com (unverified [63.105.27.131]) by pdxpo.dsl-only.net (Rockliffe SMTPRA 4.5.6) with ESMTP id ; Mon, 1 Jul 2002 13:03:48 -0700 Content-Type: text/plain; charset="iso-8859-1" From: Ryan Grove Organization: http://wonko.com/ To: "Raja Velu" Subject: Re: Browser-based FTP access as part of a web page Date: Mon, 1 Jul 2002 13:09:36 -0700 X-Mailer: KMail [version 1.4] References: <003f01c22115$195313e0$1d00a8c0@www.micronetusa.com> In-Reply-To: <003f01c22115$195313e0$1d00a8c0@www.micronetusa.com> Cc: freebsd-questions@freebsd.org MIME-Version: 1.0 Content-Transfer-Encoding: quoted-printable Message-Id: <200207011309.36946.ryan@wonko.com> Sender: owner-freebsd-questions@FreeBSD.ORG Precedence: bulk List-ID: List-Archive: (Web Archive) List-Help: (List Instructions) List-Subscribe: List-Unsubscribe: X-Loop: FreeBSD.ORG On Monday 01 July 2002 08:36 am, Raja Velu wrote: *snip* > When the firewall is enabled, this frame comes up with a "No page to > display" error. I look at my "security" logs and I see communication > going on between BSD:21 and the web browser. However, all of a sudden, = I > see that the web browser is trying to access some arbitrary port on the > BSD box (like 49254 etc.), which is being denied (obviously, as I have > opened up only the necessary ports). And the page returns an error. > > When I just type the FTP URL on the web browser, it works fine. It is n= ot > working THROUGH this web page only. With the firewall open, it works fi= ne > as none of the ports are protected. This sounds like the browser is trying to open a passive FTP session. Sin= ce=20 the FTP server is behind a firewall, this will fail. I know that at least= =20 Internet Explorer has an option (buried deep in the advanced preferences)= =20 to turn off passive FTP, but I'm not sure about other browsers. This website has a good description of how passive FTP works: http://slacksite.com/other/ftp.html In addition, (and I hate to advertise, but it just might help you out) I=20 wrote a GPL'ed PHP-based program called NotFTP that's extremely easy to g= et=20 running and provides a web<->FTP gateway. It gives you the option to use=20 passive or active FTP connections. You just might be able to modify it to= =20 suit your needs (or maybe you can use it without modifying it). You can=20 find it at http://wonko.com/notftp/ Hope that helps. --=20 Ryan Grove ryan@wonko.com http://wonko.com/ To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-questions" in the body of the message