Date: Thu, 1 Mar 2007 19:49:21 -0600 From: "Kelly D. Grills" <kdgrills@the-grills.com> To: freebsd-questions@freebsd.org Subject: Re: Fwd: IPF (ftp - pkg_add) help requested Message-ID: <20070302014921.GA48654@the-grills.com> In-Reply-To: <6207f7d90703011310m2ffe7740i25c01aa748a79ae9@mail.gmail.com> References: <6207f7d90703010553t745460aap9cdc3f8a03ffaf69@mail.gmail.com> <45E6DBB0.9050603@hier7.com> <6207f7d90703011310m2ffe7740i25c01aa748a79ae9@mail.gmail.com>
index | next in thread | previous in thread | raw e-mail
[-- Attachment #1 --] On Thu, Mar 01, 2007 at 04:10:11PM -0500, Don Munyak wrote: > > My server was opening an additional session using ports > 1024, which > I was not initially allowing. ipf was blocking outbound due to this > rule. This is a known issue with ftp client sessions using active mode > when behind a firewall. > As I hinted at in my original response, If you'd rather keep your firewall rules tighter, pkg_add(1) says: Note: If you wish to use passive mode ftp in such transfers, set the variable FTP_PASSIVE_MODE to some value in your environment. Otherwise, the more standard ACTIVE mode may be used. If pkg_add consistently fails to fetch a package from a site known to work, it may be because you have a firewall that demands the usage of passive mode ftp. -- Kelly D. Grills kdgrills@the-grills.com [-- Attachment #2 --] -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.4.6 (FreeBSD) Comment: PGP key: mailto:kdgrills-pgpkey@the-grills.com iD8DBQFF54Kh7inS5LzF7HMRAiC+AJ4hfYUA5R2o00EDjXIQcOW5bSIGxgCfaWLV PRVxp4J26WJ05znW4xhiKJA= =VyOl -----END PGP SIGNATURE-----help
Want to link to this message? Use this
URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?20070302014921.GA48654>