Date: Thu, 17 May 2007 20:52:38 -0400 From: "Dave" <dmehler26@woh.rr.com> To: <freebsd-pf@freebsd.org> Subject: ftp, pf, passive ftp and fetch Message-ID: <000301c798e6$d51bfdf0$0200a8c0@satellite>
next in thread | raw e-mail | index | archive | help
Hi,
I'm trying to get ftp working from behind a pf firewall. I'm using pftpx
on FreeBSD 6.2 for this. I believe i have passive working, one of my windows
boxes goes passive and dies on active. I've got three questions. First,
portupgrade uses fetch for retrieval correct, if so i want it to use the -p
(passive option) by default whenever it tries an ftp url. Second, ncftp i'd
like to specify that it should use passive mode connections by default as
well. Last, is active or passive ftp better in terms of security strictly
from a firewall perspective, i know the protocol isn't secure? If active ftp
is better than passive does anyone have a ruleset with it? I'm using a block
by default ruleset.
Thanks.
Dave.
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?000301c798e6$d51bfdf0$0200a8c0>