From owner-freebsd-questions@FreeBSD.ORG Tue Jun 17 05:45:34 2003 Return-Path: Delivered-To: freebsd-questions@freebsd.org Received: from mx1.FreeBSD.org (mx1.freebsd.org [216.136.204.125]) by hub.freebsd.org (Postfix) with ESMTP id 994EE37B401 for ; Tue, 17 Jun 2003 05:45:33 -0700 (PDT) Received: from perimeter.co.za (obelix.perimeter.co.za [209.212.102.154]) by mx1.FreeBSD.org (Postfix) with ESMTP id 6F01C43FAF for ; Tue, 17 Jun 2003 05:45:31 -0700 (PDT) (envelope-from bsd@perimeter.co.za) Received: from localhost (localhost [127.0.0.1]) (uid 9999) by perimeter.co.za with local; Tue, 17 Jun 2003 14:45:28 +0200 References: <20030617121346.GA80594@athomson.prv.au.itouchnet.net> <20030617083743.G94567@malkav.snowmoon.com> In-Reply-To: <20030617083743.G94567@malkav.snowmoon.com> From: bsd@perimeter.co.za To: Jaime Date: Tue, 17 Jun 2003 14:45:28 +0200 Mime-Version: 1.0 Content-Type: text/plain; format=flowed; charset="iso-8859-1" Content-Transfer-Encoding: 7bit Message-ID: cc: freebsd-questions@freebsd.org Subject: Re: restrictive ipfw ruleset and ftp X-BeenThere: freebsd-questions@freebsd.org X-Mailman-Version: 2.1.1 Precedence: list List-Id: User questions List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Tue, 17 Jun 2003 12:45:35 -0000 Jaime writes: > IIRC, FTP sends its replies on TCP port 20. I can't recall if > that is port 20 on the remote or local host, though. A little > experimentation and you'll probably figure it out. (hint: netstat -nf > inet) That's true of "non-passive" mode connections (FTP server port 20 to FTP Client port 1024-65535), but I suspect the original poster is trying to permit passive mode connections. PS: does anyone know what the correct terminology for FTP's "non-passive" mode is? I sometimes refer to "active" mode when talking FTP (because that term somehow got stuck in my head once upon a time), but I usually get some very curious/confused looks when I talk about "active FTP"... :) Patrick.