Date: Thu, 17 May 2007 20:52:38 -0400 From: "Dave" <dmehler26@woh.rr.com> To: <freebsd-pf@freebsd.org> Subject: ftp, pf, passive ftp and fetch Message-ID: <000301c798e6$d51bfdf0$0200a8c0@satellite>
next in thread | raw e-mail | index | archive | help
Hi, I'm trying to get ftp working from behind a pf firewall. I'm using pftpx on FreeBSD 6.2 for this. I believe i have passive working, one of my windows boxes goes passive and dies on active. I've got three questions. First, portupgrade uses fetch for retrieval correct, if so i want it to use the -p (passive option) by default whenever it tries an ftp url. Second, ncftp i'd like to specify that it should use passive mode connections by default as well. Last, is active or passive ftp better in terms of security strictly from a firewall perspective, i know the protocol isn't secure? If active ftp is better than passive does anyone have a ruleset with it? I'm using a block by default ruleset. Thanks. Dave.
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?000301c798e6$d51bfdf0$0200a8c0>