From owner-freebsd-questions@FreeBSD.ORG  Tue Apr 12 08:03:16 2005
Return-Path: <owner-freebsd-questions@FreeBSD.ORG>
Delivered-To: freebsd-questions@freebsd.org
Received: from mx1.FreeBSD.org (mx1.freebsd.org [216.136.204.125])
	by hub.freebsd.org (Postfix) with ESMTP id 6072F16A4CE
	for <freebsd-questions@freebsd.org>;
	Tue, 12 Apr 2005 08:03:16 +0000 (GMT)
Received: from rproxy.gmail.com (rproxy.gmail.com [64.233.170.192])
	by mx1.FreeBSD.org (Postfix) with ESMTP id 02FD043D31
	for <freebsd-questions@freebsd.org>;
	Tue, 12 Apr 2005 08:03:16 +0000 (GMT)
	(envelope-from clem.twain@gmail.com)
Received: by rproxy.gmail.com with SMTP id j1so1334507rnf
	for <freebsd-questions@freebsd.org>;
	Tue, 12 Apr 2005 01:03:15 -0700 (PDT)
DomainKey-Signature: a=rsa-sha1; q=dns; c=nofws;
	s=beta; d=gmail.com;
	h=received:message-id:date:from:reply-to:organization:user-agent:x-accept-language:mime-version:to:cc:subject:references:in-reply-to:x-enigmail-version:x-enigmail-supports:content-type:content-transfer-encoding;
	b=kzofrqNI5I4DzyynaCbgoSuEeDbbcNUDGebFRiYC/G2QwafZZN0+gTpPbuuP8b90DL5cmlsO3+OmEXCYNpbmBr1vTMb25wHx35hCf/vmDXISffQsAqrVKQAag6NdONzt9WffXK1NsRLht7awveXtb59d0+Tel7Dzw4HUO5qsdCs=
Received: by 10.39.3.33 with SMTP id f33mr5144477rni;
        Tue, 12 Apr 2005 01:03:15 -0700 (PDT)
Received: from ?196.216.3.2? ([196.216.3.2])
        by mx.gmail.com with ESMTP id z1sm354895rne.2005.04.12.01.03.13;
        Tue, 12 Apr 2005 01:03:15 -0700 (PDT)
Message-ID: <425B8024.5060608@gmail.com>
Date: Tue, 12 Apr 2005 10:00:36 +0200
From: Clement Twine <clem.twain@gmail.com>
Organization: The Net Freax BV
User-Agent: Mozilla/5.0 (X11; U; Linux i686; en-US; rv:1.7.5) Gecko/20041217
X-Accept-Language: en-us, en
MIME-Version: 1.0
To: Chris Knipe <savage@savage.za.org>
References: <425B7682.9020705@gmail.com>
	<001001c53f31$f946c7c0$0a01a8c0@ops.cenergynetworks.com>
In-Reply-To: <001001c53f31$f946c7c0$0a01a8c0@ops.cenergynetworks.com>
X-Enigmail-Version: 0.90.0.0
X-Enigmail-Supports: pgp-inline, pgp-mime
Content-Type: text/plain; charset=us-ascii; format=flowed
Content-Transfer-Encoding: 7bit
cc: freebsd-questions@freebsd.org
Subject: Re: weird problem with ipfw and ftp
X-BeenThere: freebsd-questions@freebsd.org
X-Mailman-Version: 2.1.1
Precedence: list
Reply-To: clem.twain@gmail.com
List-Id: User questions <freebsd-questions.freebsd.org>
List-Unsubscribe: <http://lists.freebsd.org/mailman/listinfo/freebsd-questions>,
	<mailto:freebsd-questions-request@freebsd.org?subject=unsubscribe>
List-Archive: <http://lists.freebsd.org/pipermail/freebsd-questions>
List-Post: <mailto:freebsd-questions@freebsd.org>
List-Help: <mailto:freebsd-questions-request@freebsd.org?subject=help>
List-Subscribe: <http://lists.freebsd.org/mailman/listinfo/freebsd-questions>,
	<mailto:freebsd-questions-request@freebsd.org?subject=subscribe>
X-List-Received-Date: Tue, 12 Apr 2005 08:03:16 -0000

Chris Knipe wrote:
> You need tcp port 20 as well (ftp-data)

so, should the following work?

 >>     ipfw add 00010 allow tcp from any to 10.0.0.1 21
 >>     ipfw add 00011 allow tcp from 10.0.0.1 21 to any
 >>     ipfw add 00012 allow tcp from any to 10.0.0.1 20
 >>     ipfw add 00013 allow tcp from 10.0.0.1 20 to any

rgds,
ernest